From xen-announce-bounces@lists.xen.org Mon Feb 15 15:33:57 2016 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Mon, 15 Feb 2016 15:33:57 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aVL8n-0006DA-6r; Mon, 15 Feb 2016 15:32:45 +0000 Received: from mail6.bemta14.messagelabs.com ([193.109.254.103]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aVL8R-0006Bk-LQ for xen-announce@lists.xenproject.org; Mon, 15 Feb 2016 15:32:23 +0000 Received: from [193.109.254.147] by server-12.bemta-14.messagelabs.com id E6/7D-09834-38FE1C65; Mon, 15 Feb 2016 15:32:19 +0000 X-Env-Sender: lars.kurth.xen@gmail.com X-Msg-Ref: server-10.tower-27.messagelabs.com!1455550338!23983800!1 X-Originating-IP: [74.125.82.52] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 7.35.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 22920 invoked from network); 15 Feb 2016 15:32:18 -0000 Received: from mail-wm0-f52.google.com (HELO mail-wm0-f52.google.com) (74.125.82.52) by server-10.tower-27.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 15 Feb 2016 15:32:18 -0000 Received: by mail-wm0-f52.google.com with SMTP id c200so118795477wme.0 for ; Mon, 15 Feb 2016 07:32:18 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-type:content-transfer-encoding:subject:date:references :to:message-id:mime-version; bh=H4lAKCsGHGkTtqk65GAKT0DTuzPP4qWsQ0FMsffMK/c=; b=g1xpqGrQmwaBvGc4uevR9pgU/snVRWzEgojBCLcH5RuGyOz6D3F/0rwLfoMKPcJZGh 3mEgIlgAdT8IMo7xtfDmW7kJQw/I78VLU/4FhgT9sEHKkwX+TQptHxWTmMcPNbwmMkcc TXFhd1ob3LyhohOPz0TxniZSI3ft/m8cNIzP8QEwHRoTCMphc+OSKKp2e3pDY8NeoaZ3 Oh4bh2pzwpztovyQi6sQ2NNPg0XlAXbLi7F2yTc7PTYaRmJyC6z1+7WRKvMTONWcIf9l g93oWFqmfvokbyJvvbOVwPoVOsnE88iBmyTeRJlVp/G0wyeV49Udzjfx58DnwnF9Wnpx 1Y5w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:content-type:content-transfer-encoding :subject:date:references:to:message-id:mime-version; bh=H4lAKCsGHGkTtqk65GAKT0DTuzPP4qWsQ0FMsffMK/c=; b=ASjaefXqDmLT+bla8EQLg9+bHiEOec9BVKNUI0idwaYSu/RNpUrHGPiU8n3+1yDE6U jCUVPySI7ESP4kVhImJOBVG6ue/bXORQzVPY92CmzJVq8YVPNvxRkQIWPbdr+9QPtvUj JbC76UXCuHHqE+cTzYnvSy5HY5MMoSvSPMDQQXASC+YG6u+E3Yl8pu9onD+c1cdbHDAn xXxr3yccmqciijL3CUHlIeVo6bD5GmfOJR+CAYUrwf3ROxLwSkJeJNLXBsf+AHDkMJt2 wRnCg3eK4mZC9fXs0BaOjfRrm+kpNB70zyj9Ky5FkJ0smfHq/22z+eAM0sJQ3Payj7A1 Eo7g== X-Gm-Message-State: AG10YOTwyHQg2rO6sM1EyawzvpxbLwYddUmZN8zZMYE0e0n6lgf2+zDgaj3q6uZzOQc/qQ== X-Received: by 10.28.227.134 with SMTP id a128mr14242716wmh.67.1455550338393; Mon, 15 Feb 2016 07:32:18 -0800 (PST) Received: from [192.168.0.12] (97e66ebc.skybroadband.com. [151.230.110.188]) by smtp.gmail.com with ESMTPSA id gg7sm25894170wjd.10.2016.02.15.07.32.15 for (version=TLSv1/SSLv3 cipher=OTHER); Mon, 15 Feb 2016 07:32:15 -0800 (PST) From: Lars Kurth Date: Mon, 15 Feb 2016 15:32:14 +0000 References: <56C1F0CB02000078000D22A5@prv-mh.provo.novell.com> To: xen-announce@lists.xenproject.org Message-Id: <4CFBB99F-E108-4A49-A1CE-73AA434ED537@gmail.com> Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\)) X-Mailer: Apple Mail (2.2104) X-Mailman-Approved-At: Mon, 15 Feb 2016 15:32:43 +0000 Subject: [Xen-announce] Xen 4.6.1 released X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org > Begin forwarded message: > > From: "Jan Beulich" > Subject: [Xen-devel] Xen 4.6.1 released > Date: 15 February 2016 14:37:47 GMT > To: > Cc: xen-devel > > All, > > I am pleased to announce the release of Xen 4.6.1. This is > available immediately from its git repository > http://xenbits.xen.org/gitweb/?p=xen.git;a=shortlog;h=refs/heads/stable-4.6 > (tag RELEASE-4.6.1) or from the XenProject download page > http://www.xenproject.org/downloads/xen-archives/xen-46-series/xen-461.html > (where a list of changes can also be found). > > Note that, as also mentioned on the web page above, due to two > oversights the fixes for both XSA-155 and XSA-162 have got only > partially applied to this release. (Note further that the same applies > to the recently announced 4.4.4 release.) > > We recommend all users of the 4.6 stable series to update to this > first point release. > > Regards, > Jan > > > > _______________________________________________ > Xen-devel mailing list > Xen-devel@lists.xen.org > http://lists.xen.org/xen-devel _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce From xen-announce-bounces@lists.xen.org Mon Feb 15 15:33:57 2016 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Mon, 15 Feb 2016 15:33:57 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aVL8n-0006DA-6r; Mon, 15 Feb 2016 15:32:45 +0000 Received: from mail6.bemta14.messagelabs.com ([193.109.254.103]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aVL8R-0006Bk-LQ for xen-announce@lists.xenproject.org; Mon, 15 Feb 2016 15:32:23 +0000 Received: from [193.109.254.147] by server-12.bemta-14.messagelabs.com id E6/7D-09834-38FE1C65; Mon, 15 Feb 2016 15:32:19 +0000 X-Env-Sender: lars.kurth.xen@gmail.com X-Msg-Ref: server-10.tower-27.messagelabs.com!1455550338!23983800!1 X-Originating-IP: [74.125.82.52] X-SpamReason: No, hits=0.0 required=7.0 tests= X-StarScan-Received: X-StarScan-Version: 7.35.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 22920 invoked from network); 15 Feb 2016 15:32:18 -0000 Received: from mail-wm0-f52.google.com (HELO mail-wm0-f52.google.com) (74.125.82.52) by server-10.tower-27.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 15 Feb 2016 15:32:18 -0000 Received: by mail-wm0-f52.google.com with SMTP id c200so118795477wme.0 for ; Mon, 15 Feb 2016 07:32:18 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-type:content-transfer-encoding:subject:date:references :to:message-id:mime-version; bh=H4lAKCsGHGkTtqk65GAKT0DTuzPP4qWsQ0FMsffMK/c=; b=g1xpqGrQmwaBvGc4uevR9pgU/snVRWzEgojBCLcH5RuGyOz6D3F/0rwLfoMKPcJZGh 3mEgIlgAdT8IMo7xtfDmW7kJQw/I78VLU/4FhgT9sEHKkwX+TQptHxWTmMcPNbwmMkcc TXFhd1ob3LyhohOPz0TxniZSI3ft/m8cNIzP8QEwHRoTCMphc+OSKKp2e3pDY8NeoaZ3 Oh4bh2pzwpztovyQi6sQ2NNPg0XlAXbLi7F2yTc7PTYaRmJyC6z1+7WRKvMTONWcIf9l g93oWFqmfvokbyJvvbOVwPoVOsnE88iBmyTeRJlVp/G0wyeV49Udzjfx58DnwnF9Wnpx 1Y5w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:content-type:content-transfer-encoding :subject:date:references:to:message-id:mime-version; bh=H4lAKCsGHGkTtqk65GAKT0DTuzPP4qWsQ0FMsffMK/c=; b=ASjaefXqDmLT+bla8EQLg9+bHiEOec9BVKNUI0idwaYSu/RNpUrHGPiU8n3+1yDE6U jCUVPySI7ESP4kVhImJOBVG6ue/bXORQzVPY92CmzJVq8YVPNvxRkQIWPbdr+9QPtvUj JbC76UXCuHHqE+cTzYnvSy5HY5MMoSvSPMDQQXASC+YG6u+E3Yl8pu9onD+c1cdbHDAn xXxr3yccmqciijL3CUHlIeVo6bD5GmfOJR+CAYUrwf3ROxLwSkJeJNLXBsf+AHDkMJt2 wRnCg3eK4mZC9fXs0BaOjfRrm+kpNB70zyj9Ky5FkJ0smfHq/22z+eAM0sJQ3Payj7A1 Eo7g== X-Gm-Message-State: AG10YOTwyHQg2rO6sM1EyawzvpxbLwYddUmZN8zZMYE0e0n6lgf2+zDgaj3q6uZzOQc/qQ== X-Received: by 10.28.227.134 with SMTP id a128mr14242716wmh.67.1455550338393; Mon, 15 Feb 2016 07:32:18 -0800 (PST) Received: from [192.168.0.12] (97e66ebc.skybroadband.com. [151.230.110.188]) by smtp.gmail.com with ESMTPSA id gg7sm25894170wjd.10.2016.02.15.07.32.15 for (version=TLSv1/SSLv3 cipher=OTHER); Mon, 15 Feb 2016 07:32:15 -0800 (PST) From: Lars Kurth Date: Mon, 15 Feb 2016 15:32:14 +0000 References: <56C1F0CB02000078000D22A5@prv-mh.provo.novell.com> To: xen-announce@lists.xenproject.org Message-Id: <4CFBB99F-E108-4A49-A1CE-73AA434ED537@gmail.com> Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\)) X-Mailer: Apple Mail (2.2104) X-Mailman-Approved-At: Mon, 15 Feb 2016 15:32:43 +0000 Subject: [Xen-announce] Xen 4.6.1 released X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org > Begin forwarded message: > > From: "Jan Beulich" > Subject: [Xen-devel] Xen 4.6.1 released > Date: 15 February 2016 14:37:47 GMT > To: > Cc: xen-devel > > All, > > I am pleased to announce the release of Xen 4.6.1. This is > available immediately from its git repository > http://xenbits.xen.org/gitweb/?p=xen.git;a=shortlog;h=refs/heads/stable-4.6 > (tag RELEASE-4.6.1) or from the XenProject download page > http://www.xenproject.org/downloads/xen-archives/xen-46-series/xen-461.html > (where a list of changes can also be found). > > Note that, as also mentioned on the web page above, due to two > oversights the fixes for both XSA-155 and XSA-162 have got only > partially applied to this release. (Note further that the same applies > to the recently announced 4.4.4 release.) > > We recommend all users of the 4.6 stable series to update to this > first point release. > > Regards, > Jan > > > > _______________________________________________ > Xen-devel mailing list > Xen-devel@lists.xen.org > http://lists.xen.org/xen-devel _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce From xen-announce-bounces@lists.xen.org Wed Feb 17 12:29:10 2016 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 17 Feb 2016 12:29:10 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1DM-0003cY-6j; Wed, 17 Feb 2016 12:28:16 +0000 Received: from mail6.bemta14.messagelabs.com ([193.109.254.103]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1DK-0003cM-QC; Wed, 17 Feb 2016 12:28:15 +0000 Received: from [193.109.254.147] by server-5.bemta-14.messagelabs.com id 42/EB-23366-D5764C65; Wed, 17 Feb 2016 12:28:13 +0000 X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-3.tower-27.messagelabs.com!1455712091!24210787!1 X-Originating-IP: [50.57.168.107] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 7.35.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 3165 invoked from network); 17 Feb 2016 12:28:12 -0000 Received: from 50-57-168-107.static.cloud-ips.com (HELO mail.xen.org) (50.57.168.107) by server-3.tower-27.messagelabs.com with AES256-SHA encrypted SMTP; 17 Feb 2016 12:28:12 -0000 Received: from xenbits.xenproject.org ([50.57.170.242] helo=xenbits.xen.org) by mail.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1Eo-0004L7-SL; Wed, 17 Feb 2016 12:29:46 +0000 Received: from iwj by xenbits.xen.org with local (Exim 4.84) (envelope-from ) id 1aW1D5-00063u-Tl; Wed, 17 Feb 2016 12:28:00 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Wed, 17 Feb 2016 12:28:00 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 154 (CVE-2016-2270) - x86: inconsistent cachability flags on guest mappings X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2016-2270 / XSA-154 version 3 x86: inconsistent cachability flags on guest mappings UPDATES IN VERSION 3 ==================== Clarify cumbersome Resolution wording. The patch now adds a command line option to overcome the possible performance regression. Add patch backports. Clarify origin of assertion (at start of patch description) that inconsistent cacheability is a problem only for mmio pages. Public release. ISSUE DESCRIPTION ================= Multiple mappings of the same physical page with different cachability setting can cause problems. While one category (risk of using stale data) affects only guests themselves (and hence avoiding this can be left for them to control), the other category being Machine Check exceptions can be fatal to entire hosts. According to the information we were able to gather, only mappings of MMIO pages may surface this second category, but even for them there were cases where the hypervisor did not properly enforce consistent cachability. IMPACT ====== A malicious guest administrator might be able to cause a reboot, denying service to the entire host. VULNERABLE SYSTEMS ================== All Xen versions are affected. Only x86 guests given control over some physical device can trigger this vulnerability. x86 systems are vulnerable. ARM systems are not vulnerable. The vulnerability depends on the system response to mapping the same memory with different cacheability. On some systems this is harmless; on others, depending on CPU and chipset, it may be fatal. MITIGATION ========== Not handing physical devices to guests will also avoid this issue. CREDITS ======= This issue was discovered by Jan Beulich of SUSE. RESOLUTION ========== We believe that the attached patch fixes the issue. However, no formal description of CPU behaviour in particular use cases has been provided by Intel. There has been no response from AMD. We are aware of a potential performance regression with this patch on some systems - even if no hardware passthrough is configured. This is due to the behaviour of some drivers and peripherals that is beyond the scope of this security fix. The patch adds a command line option "mmio-relax" to overcome this possible regression for Domain 0 or all para-virtual guests. Note however that enabling this workaround will reinstate the security issue these patches aim to address. xsa154.patch xen-unstable xsa154-4.6.patch Xen 4.6.x xsa154-4.5.patch Xen 4.5.x xsa154-4.4.patch Xen 4.4.x xsa154-4.3.patch Xen 4.3.x $ sha256sum xsa154* bbe7fba38ee30c00ef850fa6419c769e88b5669164d447f50b1ebbe333573152 xsa154.patch 011a4e33c0e476c52fe44253d50e01a1185948fd1b2a8e645274b25da6030d71 xsa154-4.3.patch 92d475bbc344127faa4f0183a9ccca9e975c7d24eb5772bf0a0a0a2e019144c6 xsa154-4.4.patch b13737e71f22185b94ab25c07afd521add1a7e3886326c719d5df4d42f3f87f4 xsa154-4.5.patch eec88c2a57466f83a81844cb7025f70c2b671d07a75d85487d4ed73cdabbb020 xsa154-4.6.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patch described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. However deployment of the mitigations described above is NOT permitted (except where all the affected systems and VMs are administered and used only by organisations which are members of the Xen Project Security Issues Predisclosure List). Specifically, deployment on public cloud systems is NOT permitted. This is because the configuration change would be visible to the guest, which could lead to the rediscovery of the vulnerability. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJWxGayAAoJEIP+FMlX6CvZ9KwH/3z+9b7OjgpuIsOf0giZ5y99 yKoORWxQjcosYLQRQXvH62xtz0xRng+E3p+MeUm2qPUUuHFiqxSpZOAvW61C6DQL l5KNNHlIjWB3N0YVmvgRbf3WMbeX1DCsEJEIFxZUQQs3fgGAiOfIEOwRL2FIhJ5Y wP/z59fCuWs5lHoV0iAY3gkZHDd09JspCRQq8UGAc+X5jHF6fIOhUjZCS9KRQMJ5 p69ysdMj96fY5eKqwka/EXzvKMJUsQ42u5RQoYR5FhLx1UBi2otdcdbloKNseksA 7Wbf6j8Mz9NWVhvdZtnR/CNH8m5V7d78HsnGv7zNQCiMW+wg/k53yzHcw550P4w= =5V3D -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa154.patch" Content-Disposition: attachment; filename="xsa154.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xMDg0LDYgKzEwODQsMTUgQEAg bGltaXQgaXMgaWdub3JlZCBieSBYZW4uCiAKIFNwZWNpZnkgaWYgdGhlIE1N Q29uZmlnIHNwYWNlIHNob3VsZCBiZSBlbmFibGVkLgogCisjIyMgbW1pby1y ZWxheAorPiBgPSA8Ym9vbGVhbj4gfCBhbGxgCisKKz4gRGVmYXVsdDogYGZh bHNlYAorCitCeSBkZWZhdWx0LCBkb21haW5zIG1heSBub3QgY3JlYXRlIGNh Y2hlZCBtYXBwaW5ncyB0byBNTUlPIHJlZ2lvbnMuCitUaGlzIG9wdGlvbiBy ZWxheGVzIHRoZSBjaGVjayBmb3IgRG9tYWluIDAgKG9yIHdoZW4gdXNpbmcg YGFsbGAsIGFsbCBQVgorZG9tYWlucyksIHRvIHBlcm1pdCB0aGUgdXNlIG9m IGNhY2hlYWJsZSBNTUlPIG1hcHBpbmdzLgorCiAjIyMgbXNpCiA+IGA9IDxi b29sZWFuPmAKIAotLS0gYS94ZW4vYXJjaC94ODYvaHZtL210cnIuYworKysg Yi94ZW4vYXJjaC94ODYvaHZtL210cnIuYwpAQCAtNzcwLDggKzc3MCwxNyBA QCBpbnQgZXB0ZV9nZXRfZW50cnlfZW10KHN0cnVjdCBkb21haW4gKmQsCiAg ICAgaWYgKCB2LT5kb21haW4gIT0gZCApCiAgICAgICAgIHYgPSBkLT52Y3B1 ID8gZC0+dmNwdVswXSA6IE5VTEw7CiAKLSAgICBpZiAoICFtZm5fdmFsaWQo bWZuX3gobWZuKSkgKQorICAgIGlmICggIW1mbl92YWxpZChtZm5feChtZm4p KSB8fAorICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfcmFuZ2UobW1pb19y b19yYW5nZXMsIG1mbl94KG1mbiksCisgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBtZm5feChtZm4pICsgKDFVTCA8PCBvcmRlcikgLSAxKSAp CisgICAgeworICAgICAgICAqaXBhdCA9IDE7CiAgICAgICAgIHJldHVybiBN VFJSX1RZUEVfVU5DQUNIQUJMRTsKKyAgICB9CisKKyAgICBpZiAoIHJhbmdl c2V0X292ZXJsYXBzX3JhbmdlKG1taW9fcm9fcmFuZ2VzLCBtZm5feChtZm4p LAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgbWZuX3gobWZu KSArICgxVUwgPDwgb3JkZXIpIC0gMSkgKQorICAgICAgICByZXR1cm4gLTE7 CiAKICAgICBzd2l0Y2ggKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVhdHRy KGQsIGdmbiwgb3JkZXIsICZ0eXBlKSApCiAgICAgewotLS0gYS94ZW4vYXJj aC94ODYvbW0vcDJtLXB0LmMKKysrIGIveGVuL2FyY2gveDg2L21tL3AybS1w dC5jCkBAIC0xMDksNyArMTA5LDEwIEBAIHN0YXRpYyB1bnNpZ25lZCBsb25n IHAybV90eXBlX3RvX2ZsYWdzKHAKICAgICAgICAgaWYgKCAhcmFuZ2VzZXRf Y29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9fcmFuZ2VzLCBtZm5feChtZm4p KSApCiAgICAgICAgICAgICBmbGFncyB8PSBfUEFHRV9SVzsKICAgICAgICAg ZWxzZQorICAgICAgICB7CisgICAgICAgICAgICBmbGFncyB8PSBfUEFHRV9Q V1Q7CiAgICAgICAgICAgICBBU1NFUlQoIWxldmVsKTsKKyAgICAgICAgfQog ICAgICAgICByZXR1cm4gZmxhZ3MgfCBQMk1fQkFTRV9GTEFHUyB8IF9QQUdF X1BDRDsKICAgICB9CiB9Ci0tLSBhL3hlbi9hcmNoL3g4Ni9tbS9zaGFkb3cv bXVsdGkuYworKysgYi94ZW4vYXJjaC94ODYvbW0vc2hhZG93L211bHRpLmMK QEAgLTUzNCw2ICs1MzQsNyBAQCBfc2hfcHJvcGFnYXRlKHN0cnVjdCB2Y3B1 ICp2LAogICAgIGdmbl90IHRhcmdldF9nZm4gPSBndWVzdF9sMWVfZ2V0X2dm bihndWVzdF9lbnRyeSk7CiAgICAgdTMyIHBhc3NfdGhydV9mbGFnczsKICAg ICB1MzIgZ2ZsYWdzLCBzZmxhZ3M7CisgICAgYm9vbF90IG1taW9fbWZuOwog CiAgICAgLyogV2UgZG9uJ3Qgc2hhZG93IFBBRSBsM3MgKi8KICAgICBBU1NF UlQoR1VFU1RfUEFHSU5HX0xFVkVMUyA+IDMgfHwgbGV2ZWwgIT0gMyk7CkBA IC01NzQsNyArNTc1LDEwIEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUg KnYsCiAgICAgLy8gbWZuIG1lYW5zIHRoYXQgd2UgY2FuIG5vdCB1c2VmdWxs eSBzaGFkb3cgYW55dGhpbmcsIGFuZCBzbyB3ZQogICAgIC8vIHJldHVybiBl YXJseS4KICAgICAvLwotICAgIGlmICggIW1mbl92YWxpZCh0YXJnZXRfbWZu KQorICAgIG1taW9fbWZuID0gIW1mbl92YWxpZCh0YXJnZXRfbWZuKQorICAg ICAgICAgICAgICAgfHwgKGxldmVsID09IDEKKyAgICAgICAgICAgICAgICAg ICAmJiBwYWdlX2dldF9vd25lcihtZm5fdG9fcGFnZSh0YXJnZXRfbWZuKSkg PT0gZG9tX2lvKTsKKyAgICBpZiAoIG1taW9fbWZuCiAgICAgICAgICAmJiAh KGxldmVsID09IDEgJiYgKCFzaGFkb3dfbW9kZV9yZWZjb3VudHMoZCkKICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgfHwgcDJtdCA9PSBwMm1fbW1p b19kaXJlY3QpKSApCiAgICAgewpAQCAtNTkyLDcgKzU5Niw3IEBAIF9zaF9w cm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgICAgICAgICAgICAgICAg ICAgIF9QQUdFX1JXIHwgX1BBR0VfUFJFU0VOVCk7CiAgICAgaWYgKCBndWVz dF9zdXBwb3J0c19ueCh2KSApCiAgICAgICAgIHBhc3NfdGhydV9mbGFncyB8 PSBfUEFHRV9OWF9CSVQ7Ci0gICAgaWYgKCAhc2hhZG93X21vZGVfcmVmY291 bnRzKGQpICYmICFtZm5fdmFsaWQodGFyZ2V0X21mbikgKQorICAgIGlmICgg bGV2ZWwgPT0gMSAmJiAhc2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmIG1t aW9fbWZuICkKICAgICAgICAgcGFzc190aHJ1X2ZsYWdzIHw9IF9QQUdFX1BB VCB8IF9QQUdFX1BDRCB8IF9QQUdFX1BXVDsKICAgICBzZmxhZ3MgPSBnZmxh Z3MgJiBwYXNzX3RocnVfZmxhZ3M7CiAKQEAgLTY5MSwxMCArNjk1LDE0IEBA IF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgfQogCiAgICAg LyogUmVhZC1vbmx5IG1lbW9yeSAqLwotICAgIGlmICggcDJtX2lzX3JlYWRv bmx5KHAybXQpIHx8Ci0gICAgICAgICAocDJtdCA9PSBwMm1fbW1pb19kaXJl Y3QgJiYKLSAgICAgICAgICByYW5nZXNldF9jb250YWluc19zaW5nbGV0b24o bW1pb19yb19yYW5nZXMsIG1mbl94KHRhcmdldF9tZm4pKSkgKQorICAgIGlm ICggcDJtX2lzX3JlYWRvbmx5KHAybXQpICkKICAgICAgICAgc2ZsYWdzICY9 IH5fUEFHRV9SVzsKKyAgICBlbHNlIGlmICggcDJtdCA9PSBwMm1fbW1pb19k aXJlY3QgJiYKKyAgICAgICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfc2lu Z2xldG9uKG1taW9fcm9fcmFuZ2VzLCBtZm5feCh0YXJnZXRfbWZuKSkgKQor ICAgIHsKKyAgICAgICAgc2ZsYWdzICY9IH4oX1BBR0VfUlcgfCBfUEFHRV9Q QVQpOworICAgICAgICBzZmxhZ3MgfD0gX1BBR0VfUENEIHwgX1BBR0VfUFdU OworICAgIH0KIAogICAgIC8vIHByb3RlY3QgZ3Vlc3QgcGFnZSB0YWJsZXMK ICAgICAvLwpAQCAtMTIwMCwyMiArMTIwOCwyOCBAQCBzdGF0aWMgaW50IHNo YWRvd19zZXRfbDFlKHN0cnVjdCBkb21haW4KICAgICAgICAgICYmICFzaF9s MWVfaXNfbWFnaWMobmV3X3NsMWUpICkKICAgICB7CiAgICAgICAgIC8qIEFi b3V0IHRvIGluc3RhbGwgYSBuZXcgcmVmZXJlbmNlICovCi0gICAgICAgIGlm ICggc2hhZG93X21vZGVfcmVmY291bnRzKGQpICkgeworICAgICAgICBpZiAo IHNoYWRvd19tb2RlX3JlZmNvdW50cyhkKSApCisgICAgICAgIHsKKyNkZWZp bmUgUEFHRV9GTElQUEFCTEUgKF9QQUdFX1JXIHwgX1BBR0VfUFdUIHwgX1BB R0VfUENEIHwgX1BBR0VfUEFUKQorICAgICAgICAgICAgaW50IHJjOworCiAg ICAgICAgICAgICBUUkFDRV9TSEFET1dfUEFUSF9GTEFHKFRSQ0VfU0ZMQUdf U0hBRE9XX0wxX0dFVF9SRUYpOwotICAgICAgICAgICAgc3dpdGNoICggc2hh ZG93X2dldF9wYWdlX2Zyb21fbDFlKG5ld19zbDFlLCBkLCBuZXdfdHlwZSkg KQorICAgICAgICAgICAgc3dpdGNoICggcmMgPSBzaGFkb3dfZ2V0X3BhZ2Vf ZnJvbV9sMWUobmV3X3NsMWUsIGQsIG5ld190eXBlKSApCiAgICAgICAgICAg ICB7CiAgICAgICAgICAgICBkZWZhdWx0OgogICAgICAgICAgICAgICAgIC8q IERvZXNuJ3QgbG9vayBsaWtlIGEgcGFnZXRhYmxlLiAqLwogICAgICAgICAg ICAgICAgIGZsYWdzIHw9IFNIQURPV19TRVRfRVJST1I7CiAgICAgICAgICAg ICAgICAgbmV3X3NsMWUgPSBzaGFkb3dfbDFlX2VtcHR5KCk7CiAgICAgICAg ICAgICAgICAgYnJlYWs7Ci0gICAgICAgICAgICBjYXNlIDE6Ci0gICAgICAg ICAgICAgICAgc2hhZG93X2wxZV9yZW1vdmVfZmxhZ3MobmV3X3NsMWUsIF9Q QUdFX1JXKTsKKyAgICAgICAgICAgIGNhc2UgUEFHRV9GTElQUEFCTEUgJiAt UEFHRV9GTElQUEFCTEUgLi4uIFBBR0VfRkxJUFBBQkxFOgorICAgICAgICAg ICAgICAgIEFTU0VSVCghKHJjICYgflBBR0VfRkxJUFBBQkxFKSk7CisgICAg ICAgICAgICAgICAgbmV3X3NsMWUgPSBzaGFkb3dfbDFlX2ZsaXBfZmxhZ3Mo bmV3X3NsMWUsIHJjKTsKICAgICAgICAgICAgICAgICAvKiBmYWxsIHRocm91 Z2ggKi8KICAgICAgICAgICAgIGNhc2UgMDoKICAgICAgICAgICAgICAgICBz aGFkb3dfdnJhbV9nZXRfbDFlKG5ld19zbDFlLCBzbDFlLCBzbDFtZm4sIGQp OwogICAgICAgICAgICAgICAgIGJyZWFrOwogICAgICAgICAgICAgfQorI3Vu ZGVmIFBBR0VfRkxJUFBBQkxFCiAgICAgICAgIH0KICAgICB9CiAKLS0tIGEv eGVuL2FyY2gveDg2L21tL3NoYWRvdy90eXBlcy5oCisrKyBiL3hlbi9hcmNo L3g4Ni9tbS9zaGFkb3cvdHlwZXMuaApAQCAtOTksNiArOTksOSBAQCBzdGF0 aWMgaW5saW5lIHUzMiBzaGFkb3dfbDRlX2dldF9mbGFncyhzCiBzdGF0aWMg aW5saW5lIHNoYWRvd19sMWVfdAogc2hhZG93X2wxZV9yZW1vdmVfZmxhZ3Mo c2hhZG93X2wxZV90IHNsMWUsIHUzMiBmbGFncykKIHsgbDFlX3JlbW92ZV9m bGFncyhzbDFlLCBmbGFncyk7IHJldHVybiBzbDFlOyB9CitzdGF0aWMgaW5s aW5lIHNoYWRvd19sMWVfdAorc2hhZG93X2wxZV9mbGlwX2ZsYWdzKHNoYWRv d19sMWVfdCBzbDFlLCB1MzIgZmxhZ3MpCit7IGwxZV9mbGlwX2ZsYWdzKHNs MWUsIGZsYWdzKTsgcmV0dXJuIHNsMWU7IH0KIAogc3RhdGljIGlubGluZSBz aGFkb3dfbDFlX3Qgc2hhZG93X2wxZV9lbXB0eSh2b2lkKQogeyByZXR1cm4g bDFlX2VtcHR5KCk7IH0KLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysrIGIv eGVuL2FyY2gveDg2L21tLmMKQEAgLTE3OCw2ICsxNzgsMTggQEAgc3RhdGlj IHVpbnQzMl90IGJhc2VfZGlzYWxsb3dfbWFzazsKICAgICAgIGlzX3B2X2Rv bWFpbihkKSkgPyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICBcCiAgICAgIEwxX0RJU0FMTE9XX01BU0sgOiAoTDFfRElTQUxMT1df TUFTSyAmIH5QQUdFX0NBQ0hFX0FUVFJTKSkKIAorc3RhdGljIHM4IF9fcmVh ZF9tb3N0bHkgb3B0X21taW9fcmVsYXg7CitzdGF0aWMgdm9pZCBfX2luaXQg cGFyc2VfbW1pb19yZWxheChjb25zdCBjaGFyICpzKQoreworICAgIGlmICgg ISpzICkKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSAxOworICAgIGVsc2UK KyAgICAgICAgb3B0X21taW9fcmVsYXggPSBwYXJzZV9ib29sKHMpOworICAg IGlmICggb3B0X21taW9fcmVsYXggPCAwICYmIHN0cmNtcChzLCAiYWxsIikg KQorICAgICAgICBvcHRfbW1pb19yZWxheCA9IDA7Cit9CitjdXN0b21fcGFy YW0oIm1taW8tcmVsYXgiLCBwYXJzZV9tbWlvX3JlbGF4KTsKKwogc3RhdGlj IHZvaWQgX19pbml0IGluaXRfZnJhbWV0YWJsZV9jaHVuayh2b2lkICpzdGFy dCwgdm9pZCAqZW5kKQogewogICAgIHVuc2lnbmVkIGxvbmcgcyA9ICh1bnNp Z25lZCBsb25nKXN0YXJ0OwpAQCAtODcxLDEwICs4ODMsNyBAQCBnZXRfcGFn ZV9mcm9tX2wxZSgKICAgICBpZiAoICFtZm5fdmFsaWQobWZuKSB8fAogICAg ICAgICAgKHJlYWxfcGdfb3duZXIgPSBwYWdlX2dldF9vd25lcl9hbmRfcmVm ZXJlbmNlKHBhZ2UpKSA9PSBkb21faW8gKQogICAgIHsKLSNpZm5kZWYgTkRF QlVHCi0gICAgICAgIGNvbnN0IHVuc2lnbmVkIGxvbmcgKnJvX21hcDsKLSAg ICAgICAgdW5zaWduZWQgaW50IHNlZywgYmRmOwotI2VuZGlmCisgICAgICAg IGludCBmbGlwID0gMDsKIAogICAgICAgICAvKiBPbmx5IG5lZWRlZCB0aGUg cmVmZXJlbmNlIHRvIGNvbmZpcm0gZG9tX2lvIG93bmVyc2hpcC4gKi8KICAg ICAgICAgaWYgKCBtZm5fdmFsaWQobWZuKSApCkBAIC05MDgsMjQgKzkxNyw1 NSBAQCBnZXRfcGFnZV9mcm9tX2wxZSgKICAgICAgICAgICAgIHJldHVybiAt RUlOVkFMOwogICAgICAgICB9CiAKLSAgICAgICAgaWYgKCAhKGwxZiAmIF9Q QUdFX1JXKSB8fAotICAgICAgICAgICAgICFyYW5nZXNldF9jb250YWluc19z aW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1mbikgKQotICAgICAgICAgICAg cmV0dXJuIDA7CisgICAgICAgIGlmICggIXJhbmdlc2V0X2NvbnRhaW5zX3Np bmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuKSApCisgICAgICAgIHsKKyAg ICAgICAgICAgIC8qIE1NSU8gcGFnZXMgbXVzdCBub3QgYmUgbWFwcGVkIGNh Y2hhYmxlIHVubGVzcyByZXF1ZXN0ZWQgc28uICovCisgICAgICAgICAgICBz d2l0Y2ggKCBvcHRfbW1pb19yZWxheCApCisgICAgICAgICAgICB7CisgICAg ICAgICAgICBjYXNlIDA6CisgICAgICAgICAgICAgICAgYnJlYWs7CisgICAg ICAgICAgICBjYXNlIDE6CisgICAgICAgICAgICAgICAgaWYgKCBpc19oYXJk d2FyZV9kb21haW4obDFlX293bmVyKSApCisgICAgICAgICAgICBjYXNlIC0x OgorICAgICAgICAgICAgICAgICAgICByZXR1cm4gMDsKKyAgICAgICAgICAg IGRlZmF1bHQ6CisgICAgICAgICAgICAgICAgQVNTRVJUX1VOUkVBQ0hBQkxF KCk7CisgICAgICAgICAgICB9CisgICAgICAgIH0KKyAgICAgICAgZWxzZSBp ZiAoIGwxZiAmIF9QQUdFX1JXICkKKyAgICAgICAgewogI2lmbmRlZiBOREVC VUcKLSAgICAgICAgaWYgKCAhcGNpX21tY2ZnX2RlY29kZShtZm4sICZzZWcs ICZiZGYpIHx8Ci0gICAgICAgICAgICAgKChyb19tYXAgPSBwY2lfZ2V0X3Jv X21hcChzZWcpKSAhPSBOVUxMICYmCi0gICAgICAgICAgICAgIHRlc3RfYml0 KGJkZiwgcm9fbWFwKSkgKQotICAgICAgICAgICAgcHJpbnRrKFhFTkxPR19H X1dBUk5JTkcKLSAgICAgICAgICAgICAgICAgICAiZCVkOiBGb3JjaW5nIHJl YWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxuIiwKLSAgICAgICAgICAgICAg ICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZuKTsKLSAgICAgICAgZWxz ZQotICAgICAgICAgICAgcmFuZ2VzZXRfcmVwb3J0X3JhbmdlcyhtbWlvX3Jv X3JhbmdlcywgMCwgfjBVTCwKLSAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgcHJpbnRfbW1pb19lbXVsX3JhbmdlLAotICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAmKHN0cnVjdCBtbWlvX2VtdWxfcmFu Z2VfY3R4dCl7Ci0gICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgIC5kID0gbDFlX293bmVyLAotICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAubWZuID0gbWZuIH0pOworICAgICAgICAgICAgY29u c3QgdW5zaWduZWQgbG9uZyAqcm9fbWFwOworICAgICAgICAgICAgdW5zaWdu ZWQgaW50IHNlZywgYmRmOworCisgICAgICAgICAgICBpZiAoICFwY2lfbW1j ZmdfZGVjb2RlKG1mbiwgJnNlZywgJmJkZikgfHwKKyAgICAgICAgICAgICAg ICAgKChyb19tYXAgPSBwY2lfZ2V0X3JvX21hcChzZWcpKSAhPSBOVUxMICYm CisgICAgICAgICAgICAgICAgICB0ZXN0X2JpdChiZGYsIHJvX21hcCkpICkK KyAgICAgICAgICAgICAgICBwcmludGsoWEVOTE9HX0dfV0FSTklORworICAg ICAgICAgICAgICAgICAgICAgICAiZCVkOiBGb3JjaW5nIHJlYWQtb25seSBh Y2Nlc3MgdG8gTUZOICVseFxuIiwKKyAgICAgICAgICAgICAgICAgICAgICAg bDFlX293bmVyLT5kb21haW5faWQsIG1mbik7CisgICAgICAgICAgICBlbHNl CisgICAgICAgICAgICAgICAgcmFuZ2VzZXRfcmVwb3J0X3JhbmdlcyhtbWlv X3JvX3JhbmdlcywgMCwgfjBVTCwKKyAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgIHByaW50X21taW9fZW11bF9yYW5nZSwKKyAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICYoc3RydWN0IG1t aW9fZW11bF9yYW5nZV9jdHh0KXsKKyAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAuZCA9IGwxZV9vd25lciwKKyAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAubWZuID0gbWZu IH0pOwogI2VuZGlmCi0gICAgICAgIHJldHVybiAxOworICAgICAgICAgICAg ZmxpcCA9IF9QQUdFX1JXOworICAgICAgICB9CisKKyAgICAgICAgc3dpdGNo ICggbDFmICYgUEFHRV9DQUNIRV9BVFRSUyApCisgICAgICAgIHsKKyAgICAg ICAgY2FzZSAwOiAvKiBXQiAqLworICAgICAgICAgICAgZmxpcCB8PSBfUEFH RV9QV1QgfCBfUEFHRV9QQ0Q7CisgICAgICAgICAgICBicmVhazsKKyAgICAg ICAgY2FzZSBfUEFHRV9QV1Q6IC8qIFdUICovCisgICAgICAgIGNhc2UgX1BB R0VfUFdUIHwgX1BBR0VfUEFUOiAvKiBXUCAqLworICAgICAgICAgICAgZmxp cCB8PSBfUEFHRV9QQ0QgfCAobDFmICYgX1BBR0VfUEFUKTsKKyAgICAgICAg ICAgIGJyZWFrOworICAgICAgICB9CisKKyAgICAgICAgcmV0dXJuIGZsaXA7 CiAgICAgfQogCiAgICAgaWYgKCB1bmxpa2VseSggKHJlYWxfcGdfb3duZXIg IT0gcGdfb3duZXIpICYmCkBAIC0xMzE1LDggKzEzNTUsOSBAQCBzdGF0aWMg aW50IGFsbG9jX2wxX3RhYmxlKHN0cnVjdCBwYWdlX2luCiAgICAgICAgICAg ICAgICAgZ290byBmYWlsOwogICAgICAgICAgICAgY2FzZSAwOgogICAgICAg ICAgICAgICAgIGJyZWFrOwotICAgICAgICAgICAgY2FzZSAxOgotICAgICAg ICAgICAgICAgIGwxZV9yZW1vdmVfZmxhZ3MocGwxZVtpXSwgX1BBR0VfUlcp OworICAgICAgICAgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0VfUlcgfCBQ QUdFX0NBQ0hFX0FUVFJTOgorICAgICAgICAgICAgICAgIEFTU0VSVCghKHJl dCAmIH4oX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FUVFJTKSkpOworICAgICAg ICAgICAgICAgIGwxZV9mbGlwX2ZsYWdzKHBsMWVbaV0sIHJldCk7CiAgICAg ICAgICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICB9CiAKQEAgLTE4NDks OCArMTg5MCw5IEBAIHN0YXRpYyBpbnQgbW9kX2wxX2VudHJ5KGwxX3BnZW50 cnlfdCAqcGwKICAgICAgICAgICAgIHJldHVybiAtRUlOVkFMOwogICAgICAg ICB9CiAKLSAgICAgICAgLyogRmFzdCBwYXRoIGZvciBpZGVudGljYWwgbWFw cGluZywgci93IGFuZCBwcmVzZW5jZS4gKi8KLSAgICAgICAgaWYgKCAhbDFl X2hhc19jaGFuZ2VkKG9sMWUsIG5sMWUsIF9QQUdFX1JXIHwgX1BBR0VfUFJF U0VOVCkgKQorICAgICAgICAvKiBGYXN0IHBhdGggZm9yIGlkZW50aWNhbCBt YXBwaW5nLCByL3csIHByZXNlbmNlLCBhbmQgY2FjaGFiaWxpdHkuICovCisg ICAgICAgIGlmICggIWwxZV9oYXNfY2hhbmdlZChvbDFlLCBubDFlLAorICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgUEFHRV9DQUNIRV9BVFRSUyB8 IF9QQUdFX1JXIHwgX1BBR0VfUFJFU0VOVCkgKQogICAgICAgICB7CiAgICAg ICAgICAgICBhZGp1c3RfZ3Vlc3RfbDFlKG5sMWUsIHB0X2RvbSk7CiAgICAg ICAgICAgICBpZiAoIFVQREFURV9FTlRSWShsMSwgcGwxZSwgb2wxZSwgbmwx ZSwgZ2wxbWZuLCBwdF92Y3B1LApAQCAtMTg3Myw4ICsxOTE1LDkgQEAgc3Rh dGljIGludCBtb2RfbDFfZW50cnkobDFfcGdlbnRyeV90ICpwbAogICAgICAg ICAgICAgcmV0dXJuIHJjOwogICAgICAgICBjYXNlIDA6CiAgICAgICAgICAg ICBicmVhazsKLSAgICAgICAgY2FzZSAxOgotICAgICAgICAgICAgbDFlX3Jl bW92ZV9mbGFncyhubDFlLCBfUEFHRV9SVyk7CisgICAgICAgIGNhc2UgX1BB R0VfUlcgLi4uIF9QQUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUzoKKyAgICAg ICAgICAgIEFTU0VSVCghKHJjICYgfihfUEFHRV9SVyB8IFBBR0VfQ0FDSEVf QVRUUlMpKSk7CisgICAgICAgICAgICBsMWVfZmxpcF9mbGFncyhubDFlLCBy Yyk7CiAgICAgICAgICAgICByYyA9IDA7CiAgICAgICAgICAgICBicmVhazsK ICAgICAgICAgfQpAQCAtNTEwOSw2ICs1MTUyLDcgQEAgc3RhdGljIGludCBw dHdyX2VtdWxhdGVkX3VwZGF0ZSgKICAgICBsMV9wZ2VudHJ5X3QgcHRlLCBv bDFlLCBubDFlLCAqcGwxZTsKICAgICBzdHJ1Y3QgdmNwdSAqdiA9IGN1cnJl bnQ7CiAgICAgc3RydWN0IGRvbWFpbiAqZCA9IHYtPmRvbWFpbjsKKyAgICBp bnQgcmV0OwogCiAgICAgLyogT25seSBhbGxvdyBuYXR1cmFsbHktYWxpZ25l ZCBzdG9yZXMgd2l0aGluIHRoZSBvcmlnaW5hbCAlY3IyIHBhZ2UuICovCiAg ICAgaWYgKCB1bmxpa2VseSgoKGFkZHJecHR3cl9jdHh0LT5jcjIpICYgUEFH RV9NQVNLKSB8fCAoYWRkciAmIChieXRlcy0xKSkpICkKQEAgLTUxNTYsNyAr NTIwMCw3IEBAIHN0YXRpYyBpbnQgcHR3cl9lbXVsYXRlZF91cGRhdGUoCiAK ICAgICAvKiBDaGVjayB0aGUgbmV3IFBURS4gKi8KICAgICBubDFlID0gbDFl X2Zyb21faW50cHRlKHZhbCk7Ci0gICAgc3dpdGNoICggZ2V0X3BhZ2VfZnJv bV9sMWUobmwxZSwgZCwgZCkgKQorICAgIHN3aXRjaCAoIHJldCA9IGdldF9w YWdlX2Zyb21fbDFlKG5sMWUsIGQsIGQpICkKICAgICB7CiAgICAgZGVmYXVs dDoKICAgICAgICAgaWYgKCBpc19wdl8zMmJpdF9kb21haW4oZCkgJiYgKGJ5 dGVzID09IDQpICYmICh1bmFsaWduZWRfYWRkciAmIDQpICYmCkBAIC01MTgw LDggKzUyMjQsOSBAQCBzdGF0aWMgaW50IHB0d3JfZW11bGF0ZWRfdXBkYXRl KAogICAgICAgICBicmVhazsKICAgICBjYXNlIDA6CiAgICAgICAgIGJyZWFr OwotICAgIGNhc2UgMToKLSAgICAgICAgbDFlX3JlbW92ZV9mbGFncyhubDFl LCBfUEFHRV9SVyk7CisgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0VfUlcg fCBQQUdFX0NBQ0hFX0FUVFJTOgorICAgICAgICBBU1NFUlQoIShyZXQgJiB+ KF9QQUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUykpKTsKKyAgICAgICAgbDFl X2ZsaXBfZmxhZ3MobmwxZSwgcmV0KTsKICAgICAgICAgYnJlYWs7CiAgICAg fQogCi0tLSBhL3hlbi9pbmNsdWRlL2FzbS14ODYvcGFnZS5oCisrKyBiL3hl bi9pbmNsdWRlL2FzbS14ODYvcGFnZS5oCkBAIC0xNTcsNiArMTU3LDkgQEAg c3RhdGljIGlubGluZSBsNF9wZ2VudHJ5X3QgbDRlX2Zyb21fcGFkZAogI2Rl ZmluZSBsM2VfcmVtb3ZlX2ZsYWdzKHgsIGZsYWdzKSAoKHgpLmwzICY9IH5w dXRfcHRlX2ZsYWdzKGZsYWdzKSkKICNkZWZpbmUgbDRlX3JlbW92ZV9mbGFn cyh4LCBmbGFncykgKCh4KS5sNCAmPSB+cHV0X3B0ZV9mbGFncyhmbGFncykp CiAKKy8qIEZsaXAgZmxhZ3MgaW4gYW4gZXhpc3RpbmcgTDEgUFRFLiAqLwor I2RlZmluZSBsMWVfZmxpcF9mbGFncyh4LCBmbGFncykgICAgKCh4KS5sMSBe PSBwdXRfcHRlX2ZsYWdzKGZsYWdzKSkKKwogLyogQ2hlY2sgaWYgYSBwdGUn cyBwYWdlIG1hcHBpbmcgb3Igc2lnbmlmaWNhbnQgYWNjZXNzIGZsYWdzIGhh dmUgY2hhbmdlZC4gKi8KICNkZWZpbmUgbDFlX2hhc19jaGFuZ2VkKHgseSxm bGFncykgXAogICAgICggISEoKCh4KS5sMSBeICh5KS5sMSkgJiAoKFBBRERS X01BU0smUEFHRV9NQVNLKXxwdXRfcHRlX2ZsYWdzKGZsYWdzKSkpICkK --=separator Content-Type: application/octet-stream; name="xsa154-4.3.patch" Content-Disposition: attachment; filename="xsa154-4.3.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC02NTYsNiArNjU2LDE1IEBAIGxp bWl0IGlzIGlnbm9yZWQgYnkgWGVuLgogCiBTcGVjaWZ5IGlmIHRoZSBNTUNv bmZpZyBzcGFjZSBzaG91bGQgYmUgZW5hYmxlZC4KIAorIyMjIG1taW8tcmVs YXgKKz4gYD0gPGJvb2xlYW4+IHwgYWxsYAorCis+IERlZmF1bHQ6IGBmYWxz ZWAKKworQnkgZGVmYXVsdCwgZG9tYWlucyBtYXkgbm90IGNyZWF0ZSBjYWNo ZWQgbWFwcGluZ3MgdG8gTU1JTyByZWdpb25zLgorVGhpcyBvcHRpb24gcmVs YXhlcyB0aGUgY2hlY2sgZm9yIERvbWFpbiAwIChvciB3aGVuIHVzaW5nIGBh bGxgLCBhbGwgUFYKK2RvbWFpbnMpLCB0byBwZXJtaXQgdGhlIHVzZSBvZiBj YWNoZWFibGUgTU1JTyBtYXBwaW5ncy4KKwogIyMjIG1zaQogPiBgPSA8Ym9v bGVhbj5gCiAKLS0tIGEveGVuL2FyY2gveDg2L2h2bS9tdHJyLmMKKysrIGIv eGVuL2FyY2gveDg2L2h2bS9tdHJyLmMKQEAgLTY5Myw4ICs2OTMsMTIgQEAg dWludDhfdCBlcHRlX2dldF9lbnRyeV9lbXQoc3RydWN0IGRvbWFpbgogICAg IGlmICggdi0+ZG9tYWluICE9IGQgKQogICAgICAgICB2ID0gZC0+dmNwdSA/ IGQtPnZjcHVbMF0gOiBOVUxMOwogCi0gICAgaWYgKCAhbWZuX3ZhbGlkKG1m bl94KG1mbikpICkKKyAgICBpZiAoICFtZm5fdmFsaWQobWZuX3gobWZuKSkg fHwKKyAgICAgICAgIHJhbmdlc2V0X2NvbnRhaW5zX3NpbmdsZXRvbihtbWlv X3JvX3JhbmdlcywgbWZuX3gobWZuKSkgKQorICAgIHsKKyAgICAgICAgKmlw YXQgPSAxOwogICAgICAgICByZXR1cm4gTVRSUl9UWVBFX1VOQ0FDSEFCTEU7 CisgICAgfQogCiAgICAgaWYgKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVh dHRyKGQsIGdmbiwgJnR5cGUpICkKICAgICAgICAgcmV0dXJuIHR5cGU7Ci0t LSBhL3hlbi9hcmNoL3g4Ni9tbS9wMm0tcHQuYworKysgYi94ZW4vYXJjaC94 ODYvbW0vcDJtLXB0LmMKQEAgLTkzLDYgKzkzLDggQEAgc3RhdGljIHVuc2ln bmVkIGxvbmcgcDJtX3R5cGVfdG9fZmxhZ3MocAogICAgIGNhc2UgcDJtX21t aW9fZGlyZWN0OgogICAgICAgICBpZiAoICFyYW5nZXNldF9jb250YWluc19z aW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1mbl94KG1mbikpICkKICAgICAg ICAgICAgIGZsYWdzIHw9IF9QQUdFX1JXOworICAgICAgICBlbHNlCisgICAg ICAgICAgICBmbGFncyB8PSBfUEFHRV9QV1Q7CiAgICAgICAgIHJldHVybiBm bGFncyB8IFAyTV9CQVNFX0ZMQUdTIHwgX1BBR0VfUENEOwogICAgIH0KIH0K LS0tIGEveGVuL2FyY2gveDg2L21tL3NoYWRvdy9tdWx0aS5jCisrKyBiL3hl bi9hcmNoL3g4Ni9tbS9zaGFkb3cvbXVsdGkuYwpAQCAtNTIxLDYgKzUyMSw3 IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgZ2ZuX3Qg dGFyZ2V0X2dmbiA9IGd1ZXN0X2wxZV9nZXRfZ2ZuKGd1ZXN0X2VudHJ5KTsK ICAgICB1MzIgcGFzc190aHJ1X2ZsYWdzOwogICAgIHUzMiBnZmxhZ3MsIHNm bGFnczsKKyAgICBib29sX3QgbW1pb19tZm47CiAKICAgICAvKiBXZSBkb24n dCBzaGFkb3cgUEFFIGwzcyAqLwogICAgIEFTU0VSVChHVUVTVF9QQUdJTkdf TEVWRUxTID4gMyB8fCBsZXZlbCAhPSAzKTsKQEAgLTU2MSw3ICs1NjIsMTAg QEAgX3NoX3Byb3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwKICAgICAvLyBtZm4g bWVhbnMgdGhhdCB3ZSBjYW4gbm90IHVzZWZ1bGx5IHNoYWRvdyBhbnl0aGlu ZywgYW5kIHNvIHdlCiAgICAgLy8gcmV0dXJuIGVhcmx5LgogICAgIC8vCi0g ICAgaWYgKCAhbWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgbW1pb19tZm4g PSAhbWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgICAgICAgICAgICB8fCAo bGV2ZWwgPT0gMQorICAgICAgICAgICAgICAgICAgICYmIHBhZ2VfZ2V0X293 bmVyKG1mbl90b19wYWdlKHRhcmdldF9tZm4pKSA9PSBkb21faW8pOworICAg IGlmICggbW1pb19tZm4KICAgICAgICAgICYmICEobGV2ZWwgPT0gMSAmJiAo IXNoYWRvd19tb2RlX3JlZmNvdW50cyhkKSAKICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgfHwgcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QpKSApCiAg ICAgewpAQCAtNTc5LDcgKzU4Myw3IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0 IHZjcHUgKnYsCiAgICAgICAgICAgICAgICAgICAgICAgIF9QQUdFX1JXIHwg X1BBR0VfUFJFU0VOVCk7CiAgICAgaWYgKCBndWVzdF9zdXBwb3J0c19ueCh2 KSApCiAgICAgICAgIHBhc3NfdGhydV9mbGFncyB8PSBfUEFHRV9OWF9CSVQ7 Ci0gICAgaWYgKCAhc2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmICFtZm5f dmFsaWQodGFyZ2V0X21mbikgKQorICAgIGlmICggbGV2ZWwgPT0gMSAmJiAh c2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmIG1taW9fbWZuICkKICAgICAg ICAgcGFzc190aHJ1X2ZsYWdzIHw9IF9QQUdFX1BBVCB8IF9QQUdFX1BDRCB8 IF9QQUdFX1BXVDsKICAgICBzZmxhZ3MgPSBnZmxhZ3MgJiBwYXNzX3RocnVf ZmxhZ3M7CiAKQEAgLTY3NiwxMCArNjgwLDE0IEBAIF9zaF9wcm9wYWdhdGUo c3RydWN0IHZjcHUgKnYsCiAgICAgfQogCiAgICAgLyogUmVhZC1vbmx5IG1l bW9yeSAqLwotICAgIGlmICggcDJtX2lzX3JlYWRvbmx5KHAybXQpIHx8Ci0g ICAgICAgICAocDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKLSAgICAgICAg ICByYW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMs IG1mbl94KHRhcmdldF9tZm4pKSkgKQorICAgIGlmICggcDJtX2lzX3JlYWRv bmx5KHAybXQpICkKICAgICAgICAgc2ZsYWdzICY9IH5fUEFHRV9SVzsKKyAg ICBlbHNlIGlmICggcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKKyAgICAg ICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9f cmFuZ2VzLCBtZm5feCh0YXJnZXRfbWZuKSkgKQorICAgIHsKKyAgICAgICAg c2ZsYWdzICY9IH4oX1BBR0VfUlcgfCBfUEFHRV9QQVQpOworICAgICAgICBz ZmxhZ3MgfD0gX1BBR0VfUENEIHwgX1BBR0VfUFdUOworICAgIH0KICAgICAK ICAgICAvLyBwcm90ZWN0IGd1ZXN0IHBhZ2UgdGFibGVzCiAgICAgLy8KQEAg LTEyMDEsMjIgKzEyMDksMjggQEAgc3RhdGljIGludCBzaGFkb3dfc2V0X2wx ZShzdHJ1Y3QgdmNwdSAqdgogICAgICAgICAgJiYgIXNoX2wxZV9pc19tYWdp YyhuZXdfc2wxZSkgKSAKICAgICB7CiAgICAgICAgIC8qIEFib3V0IHRvIGlu c3RhbGwgYSBuZXcgcmVmZXJlbmNlICovICAgICAgICAKLSAgICAgICAgaWYg KCBzaGFkb3dfbW9kZV9yZWZjb3VudHMoZCkgKSB7CisgICAgICAgIGlmICgg c2hhZG93X21vZGVfcmVmY291bnRzKGQpICkKKyAgICAgICAgeworI2RlZmlu ZSBQQUdFX0ZMSVBQQUJMRSAoX1BBR0VfUlcgfCBfUEFHRV9QV1QgfCBfUEFH RV9QQ0QgfCBfUEFHRV9QQVQpCisgICAgICAgICAgICBpbnQgcmM7CisKICAg ICAgICAgICAgIFRSQUNFX1NIQURPV19QQVRIX0ZMQUcoVFJDRV9TRkxBR19T SEFET1dfTDFfR0VUX1JFRik7Ci0gICAgICAgICAgICBzd2l0Y2ggKCBzaGFk b3dfZ2V0X3BhZ2VfZnJvbV9sMWUobmV3X3NsMWUsIGQsIG5ld190eXBlKSAp CisgICAgICAgICAgICBzd2l0Y2ggKCByYyA9IHNoYWRvd19nZXRfcGFnZV9m cm9tX2wxZShuZXdfc2wxZSwgZCwgbmV3X3R5cGUpICkKICAgICAgICAgICAg IHsKICAgICAgICAgICAgIGRlZmF1bHQ6CiAgICAgICAgICAgICAgICAgLyog RG9lc24ndCBsb29rIGxpa2UgYSBwYWdldGFibGUuICovCiAgICAgICAgICAg ICAgICAgZmxhZ3MgfD0gU0hBRE9XX1NFVF9FUlJPUjsKICAgICAgICAgICAg ICAgICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZW1wdHkoKTsKICAgICAgICAg ICAgICAgICBicmVhazsKLSAgICAgICAgICAgIGNhc2UgMToKLSAgICAgICAg ICAgICAgICBzaGFkb3dfbDFlX3JlbW92ZV9mbGFncyhuZXdfc2wxZSwgX1BB R0VfUlcpOworICAgICAgICAgICAgY2FzZSBQQUdFX0ZMSVBQQUJMRSAmIC1Q QUdFX0ZMSVBQQUJMRSAuLi4gUEFHRV9GTElQUEFCTEU6CisgICAgICAgICAg ICAgICAgQVNTRVJUKCEocmMgJiB+UEFHRV9GTElQUEFCTEUpKTsKKyAgICAg ICAgICAgICAgICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZmxpcF9mbGFncyhu ZXdfc2wxZSwgcmMpOwogICAgICAgICAgICAgICAgIC8qIGZhbGwgdGhyb3Vn aCAqLwogICAgICAgICAgICAgY2FzZSAwOgogICAgICAgICAgICAgICAgIHNo YWRvd192cmFtX2dldF9sMWUobmV3X3NsMWUsIHNsMWUsIHNsMW1mbiwgZCk7 CiAgICAgICAgICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICB9CisjdW5k ZWYgUEFHRV9GTElQUEFCTEUKICAgICAgICAgfQogICAgIH0gCiAKLS0tIGEv eGVuL2FyY2gveDg2L21tL3NoYWRvdy90eXBlcy5oCisrKyBiL3hlbi9hcmNo L3g4Ni9tbS9zaGFkb3cvdHlwZXMuaApAQCAtMTAwLDYgKzEwMCw5IEBAIHN0 YXRpYyBpbmxpbmUgdTMyIHNoYWRvd19sNGVfZ2V0X2ZsYWdzKHMKIHN0YXRp YyBpbmxpbmUgc2hhZG93X2wxZV90CiBzaGFkb3dfbDFlX3JlbW92ZV9mbGFn cyhzaGFkb3dfbDFlX3Qgc2wxZSwgdTMyIGZsYWdzKQogeyBsMWVfcmVtb3Zl X2ZsYWdzKHNsMWUsIGZsYWdzKTsgcmV0dXJuIHNsMWU7IH0KK3N0YXRpYyBp bmxpbmUgc2hhZG93X2wxZV90CitzaGFkb3dfbDFlX2ZsaXBfZmxhZ3Moc2hh ZG93X2wxZV90IHNsMWUsIHUzMiBmbGFncykKK3sgbDFlX2ZsaXBfZmxhZ3Mo c2wxZSwgZmxhZ3MpOyByZXR1cm4gc2wxZTsgfQogCiBzdGF0aWMgaW5saW5l IHNoYWRvd19sMWVfdCBzaGFkb3dfbDFlX2VtcHR5KHZvaWQpIAogeyByZXR1 cm4gbDFlX2VtcHR5KCk7IH0KLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysr IGIveGVuL2FyY2gveDg2L21tLmMKQEAgLTE4OCw2ICsxODgsMTggQEAgc3Rh dGljIHVpbnQzMl90IGJhc2VfZGlzYWxsb3dfbWFzazsKICAgICAgICFpc19o dm1fZG9tYWluKGQpKSA/ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBcCiAgICAgIEwxX0RJU0FMTE9XX01BU0sgOiAoTDFfRElTQUxM T1dfTUFTSyAmIH5QQUdFX0NBQ0hFX0FUVFJTKSkKIAorc3RhdGljIHM4IF9f cmVhZF9tb3N0bHkgb3B0X21taW9fcmVsYXg7CitzdGF0aWMgdm9pZCBfX2lu aXQgcGFyc2VfbW1pb19yZWxheChjb25zdCBjaGFyICpzKQoreworICAgIGlm ICggISpzICkKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSAxOworICAgIGVs c2UKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSBwYXJzZV9ib29sKHMpOwor ICAgIGlmICggb3B0X21taW9fcmVsYXggPCAwICYmIHN0cmNtcChzLCAiYWxs IikgKQorICAgICAgICBvcHRfbW1pb19yZWxheCA9IDA7Cit9CitjdXN0b21f cGFyYW0oIm1taW8tcmVsYXgiLCBwYXJzZV9tbWlvX3JlbGF4KTsKKwogc3Rh dGljIHZvaWQgX19pbml0IGluaXRfZnJhbWV0YWJsZV9jaHVuayh2b2lkICpz dGFydCwgdm9pZCAqZW5kKQogewogICAgIHVuc2lnbmVkIGxvbmcgcyA9ICh1 bnNpZ25lZCBsb25nKXN0YXJ0OwpAQCAtNzczLDYgKzc4NSw4IEBAIGdldF9w YWdlX2Zyb21fbDFlKAogICAgIGlmICggIW1mbl92YWxpZChtZm4pIHx8CiAg ICAgICAgICAocmVhbF9wZ19vd25lciA9IHBhZ2VfZ2V0X293bmVyX2FuZF9y ZWZlcmVuY2UocGFnZSkpID09IGRvbV9pbyApCiAgICAgeworICAgICAgICBp bnQgZmxpcCA9IDA7CisKICAgICAgICAgLyogT25seSBuZWVkZWQgdGhlIHJl ZmVyZW5jZSB0byBjb25maXJtIGRvbV9pbyBvd25lcnNoaXAuICovCiAgICAg ICAgIGlmICggbWZuX3ZhbGlkKG1mbikgKQogICAgICAgICAgICAgcHV0X3Bh Z2UocGFnZSk7CkBAIC04MDUsMTMgKzgxOSw0MSBAQCBnZXRfcGFnZV9mcm9t X2wxZSgKICAgICAgICAgICAgIHJldHVybiAtRUlOVkFMOwogICAgICAgICB9 CiAKLSAgICAgICAgaWYgKCAhKGwxZiAmIF9QQUdFX1JXKSB8fAotICAgICAg ICAgICAgICFyYW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19y YW5nZXMsIG1mbikgKQotICAgICAgICAgICAgcmV0dXJuIDA7Ci0gICAgICAg IGRwcmludGsoWEVOTE9HX0dfV0FSTklORywKLSAgICAgICAgICAgICAgICAi ZCVkOiBGb3JjaW5nIHJlYWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxuIiwK LSAgICAgICAgICAgICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZuKTsK LSAgICAgICAgcmV0dXJuIDE7CisgICAgICAgIGlmICggIXJhbmdlc2V0X2Nv bnRhaW5zX3NpbmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuKSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIC8qIE1NSU8gcGFnZXMgbXVzdCBub3QgYmUg bWFwcGVkIGNhY2hhYmxlIHVubGVzcyByZXF1ZXN0ZWQgc28uICovCisgICAg ICAgICAgICBzd2l0Y2ggKCBvcHRfbW1pb19yZWxheCApCisgICAgICAgICAg ICB7CisgICAgICAgICAgICBjYXNlIDA6CisgICAgICAgICAgICAgICAgYnJl YWs7CisgICAgICAgICAgICBjYXNlIDE6CisgICAgICAgICAgICAgICAgaWYg KCBpc19oYXJkd2FyZV9kb21haW4obDFlX293bmVyKSApCisgICAgICAgICAg ICBjYXNlIC0xOgorICAgICAgICAgICAgICAgICAgICByZXR1cm4gMDsKKyAg ICAgICAgICAgIGRlZmF1bHQ6CisgICAgICAgICAgICAgICAgQVNTRVJUKDAp OworICAgICAgICAgICAgfQorICAgICAgICB9CisgICAgICAgIGVsc2UgaWYg KCBsMWYgJiBfUEFHRV9SVyApCisgICAgICAgIHsKKyAgICAgICAgICAgIGRw cmludGsoWEVOTE9HX0dfV0FSTklORywKKyAgICAgICAgICAgICAgICAgICAg ImQlZDogRm9yY2luZyByZWFkLW9ubHkgYWNjZXNzIHRvIE1GTiAlbHhcbiIs CisgICAgICAgICAgICAgICAgICAgIGwxZV9vd25lci0+ZG9tYWluX2lkLCBt Zm4pOworICAgICAgICAgICAgZmxpcCA9IF9QQUdFX1JXOworICAgICAgICB9 CisKKyAgICAgICAgc3dpdGNoICggbDFmICYgUEFHRV9DQUNIRV9BVFRSUyAp CisgICAgICAgIHsKKyAgICAgICAgY2FzZSAwOiAvKiBXQiAqLworICAgICAg ICAgICAgZmxpcCB8PSBfUEFHRV9QV1QgfCBfUEFHRV9QQ0Q7CisgICAgICAg ICAgICBicmVhazsKKyAgICAgICAgY2FzZSBfUEFHRV9QV1Q6IC8qIFdUICov CisgICAgICAgIGNhc2UgX1BBR0VfUFdUIHwgX1BBR0VfUEFUOiAvKiBXUCAq LworICAgICAgICAgICAgZmxpcCB8PSBfUEFHRV9QQ0QgfCAobDFmICYgX1BB R0VfUEFUKTsKKyAgICAgICAgICAgIGJyZWFrOworICAgICAgICB9CisKKyAg ICAgICAgcmV0dXJuIGZsaXA7CiAgICAgfQogCiAgICAgaWYgKCB1bmxpa2Vs eSggKHJlYWxfcGdfb3duZXIgIT0gcGdfb3duZXIpICYmCkBAIC0xMjEwLDgg KzEyNTIsOSBAQCBzdGF0aWMgaW50IGFsbG9jX2wxX3RhYmxlKHN0cnVjdCBw YWdlX2luCiAgICAgICAgICAgICAgICAgZ290byBmYWlsOwogICAgICAgICAg ICAgY2FzZSAwOgogICAgICAgICAgICAgICAgIGJyZWFrOwotICAgICAgICAg ICAgY2FzZSAxOgotICAgICAgICAgICAgICAgIGwxZV9yZW1vdmVfZmxhZ3Mo cGwxZVtpXSwgX1BBR0VfUlcpOworICAgICAgICAgICAgY2FzZSBfUEFHRV9S VyAuLi4gX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FUVFJTOgorICAgICAgICAg ICAgICAgIEFTU0VSVCghKHJldCAmIH4oX1BBR0VfUlcgfCBQQUdFX0NBQ0hF X0FUVFJTKSkpOworICAgICAgICAgICAgICAgIGwxZV9mbGlwX2ZsYWdzKHBs MWVbaV0sIHJldCk7CiAgICAgICAgICAgICAgICAgYnJlYWs7CiAgICAgICAg ICAgICB9CiAKQEAgLTE3MDYsOCArMTc0OSw5IEBAIHN0YXRpYyBpbnQgbW9k X2wxX2VudHJ5KGwxX3BnZW50cnlfdCAqcGwKICAgICAgICAgICAgIHJldHVy biAtRUlOVkFMOwogICAgICAgICB9CiAKLSAgICAgICAgLyogRmFzdCBwYXRo IGZvciBpZGVudGljYWwgbWFwcGluZywgci93IGFuZCBwcmVzZW5jZS4gKi8K LSAgICAgICAgaWYgKCAhbDFlX2hhc19jaGFuZ2VkKG9sMWUsIG5sMWUsIF9Q QUdFX1JXIHwgX1BBR0VfUFJFU0VOVCkgKQorICAgICAgICAvKiBGYXN0IHBh dGggZm9yIGlkZW50aWNhbCBtYXBwaW5nLCByL3csIHByZXNlbmNlLCBhbmQg Y2FjaGFiaWxpdHkuICovCisgICAgICAgIGlmICggIWwxZV9oYXNfY2hhbmdl ZChvbDFlLCBubDFlLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg UEFHRV9DQUNIRV9BVFRSUyB8IF9QQUdFX1JXIHwgX1BBR0VfUFJFU0VOVCkg KQogICAgICAgICB7CiAgICAgICAgICAgICBhZGp1c3RfZ3Vlc3RfbDFlKG5s MWUsIHB0X2RvbSk7CiAgICAgICAgICAgICBpZiAoIFVQREFURV9FTlRSWShs MSwgcGwxZSwgb2wxZSwgbmwxZSwgZ2wxbWZuLCBwdF92Y3B1LApAQCAtMTcz MCw4ICsxNzc0LDkgQEAgc3RhdGljIGludCBtb2RfbDFfZW50cnkobDFfcGdl bnRyeV90ICpwbAogICAgICAgICAgICAgcmV0dXJuIHJjOwogICAgICAgICBj YXNlIDA6CiAgICAgICAgICAgICBicmVhazsKLSAgICAgICAgY2FzZSAxOgot ICAgICAgICAgICAgbDFlX3JlbW92ZV9mbGFncyhubDFlLCBfUEFHRV9SVyk7 CisgICAgICAgIGNhc2UgX1BBR0VfUlcgLi4uIF9QQUdFX1JXIHwgUEFHRV9D QUNIRV9BVFRSUzoKKyAgICAgICAgICAgIEFTU0VSVCghKHJjICYgfihfUEFH RV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlMpKSk7CisgICAgICAgICAgICBsMWVf ZmxpcF9mbGFncyhubDFlLCByYyk7CiAgICAgICAgICAgICByYyA9IDA7CiAg ICAgICAgICAgICBicmVhazsKICAgICAgICAgfQpAQCAtNTAxMCw2ICs1MDU1 LDcgQEAgc3RhdGljIGludCBwdHdyX2VtdWxhdGVkX3VwZGF0ZSgKICAgICBs MV9wZ2VudHJ5X3QgcHRlLCBvbDFlLCBubDFlLCAqcGwxZTsKICAgICBzdHJ1 Y3QgdmNwdSAqdiA9IGN1cnJlbnQ7CiAgICAgc3RydWN0IGRvbWFpbiAqZCA9 IHYtPmRvbWFpbjsKKyAgICBpbnQgcmV0OwogCiAgICAgLyogT25seSBhbGxv dyBuYXR1cmFsbHktYWxpZ25lZCBzdG9yZXMgd2l0aGluIHRoZSBvcmlnaW5h bCAlY3IyIHBhZ2UuICovCiAgICAgaWYgKCB1bmxpa2VseSgoKGFkZHJecHR3 cl9jdHh0LT5jcjIpICYgUEFHRV9NQVNLKSB8fCAoYWRkciAmIChieXRlcy0x KSkpICkKQEAgLTUwNTcsNyArNTEwMyw3IEBAIHN0YXRpYyBpbnQgcHR3cl9l bXVsYXRlZF91cGRhdGUoCiAKICAgICAvKiBDaGVjayB0aGUgbmV3IFBURS4g Ki8KICAgICBubDFlID0gbDFlX2Zyb21faW50cHRlKHZhbCk7Ci0gICAgc3dp dGNoICggZ2V0X3BhZ2VfZnJvbV9sMWUobmwxZSwgZCwgZCkgKQorICAgIHN3 aXRjaCAoIHJldCA9IGdldF9wYWdlX2Zyb21fbDFlKG5sMWUsIGQsIGQpICkK ICAgICB7CiAgICAgZGVmYXVsdDoKICAgICAgICAgaWYgKCBpc19wdl8zMmJp dF9kb21haW4oZCkgJiYgKGJ5dGVzID09IDQpICYmICh1bmFsaWduZWRfYWRk ciAmIDQpICYmCkBAIC01MDgxLDggKzUxMjcsOSBAQCBzdGF0aWMgaW50IHB0 d3JfZW11bGF0ZWRfdXBkYXRlKAogICAgICAgICBicmVhazsKICAgICBjYXNl IDA6CiAgICAgICAgIGJyZWFrOwotICAgIGNhc2UgMToKLSAgICAgICAgbDFl X3JlbW92ZV9mbGFncyhubDFlLCBfUEFHRV9SVyk7CisgICAgY2FzZSBfUEFH RV9SVyAuLi4gX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FUVFJTOgorICAgICAg ICBBU1NFUlQoIShyZXQgJiB+KF9QQUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRS UykpKTsKKyAgICAgICAgbDFlX2ZsaXBfZmxhZ3MobmwxZSwgcmV0KTsKICAg ICAgICAgYnJlYWs7CiAgICAgfQogCi0tLSBhL3hlbi9pbmNsdWRlL2FzbS14 ODYvcGFnZS5oCisrKyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvcGFnZS5oCkBA IC0xNTcsNiArMTU3LDkgQEAgc3RhdGljIGlubGluZSBsNF9wZ2VudHJ5X3Qg bDRlX2Zyb21fcGFkZAogI2RlZmluZSBsM2VfcmVtb3ZlX2ZsYWdzKHgsIGZs YWdzKSAoKHgpLmwzICY9IH5wdXRfcHRlX2ZsYWdzKGZsYWdzKSkKICNkZWZp bmUgbDRlX3JlbW92ZV9mbGFncyh4LCBmbGFncykgKCh4KS5sNCAmPSB+cHV0 X3B0ZV9mbGFncyhmbGFncykpCiAKKy8qIEZsaXAgZmxhZ3MgaW4gYW4gZXhp c3RpbmcgTDEgUFRFLiAqLworI2RlZmluZSBsMWVfZmxpcF9mbGFncyh4LCBm bGFncykgICAgKCh4KS5sMSBePSBwdXRfcHRlX2ZsYWdzKGZsYWdzKSkKKwog LyogQ2hlY2sgaWYgYSBwdGUncyBwYWdlIG1hcHBpbmcgb3Igc2lnbmlmaWNh bnQgYWNjZXNzIGZsYWdzIGhhdmUgY2hhbmdlZC4gKi8KICNkZWZpbmUgbDFl X2hhc19jaGFuZ2VkKHgseSxmbGFncykgXAogICAgICggISEoKCh4KS5sMSBe ICh5KS5sMSkgJiAoKFBBRERSX01BU0smUEFHRV9NQVNLKXxwdXRfcHRlX2Zs YWdzKGZsYWdzKSkpICkK --=separator Content-Type: application/octet-stream; name="xsa154-4.4.patch" Content-Disposition: attachment; filename="xsa154-4.4.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC02OTcsNiArNjk3LDE1IEBAIGxp bWl0IGlzIGlnbm9yZWQgYnkgWGVuLgogCiBTcGVjaWZ5IGlmIHRoZSBNTUNv bmZpZyBzcGFjZSBzaG91bGQgYmUgZW5hYmxlZC4KIAorIyMjIG1taW8tcmVs YXgKKz4gYD0gPGJvb2xlYW4+IHwgYWxsYAorCis+IERlZmF1bHQ6IGBmYWxz ZWAKKworQnkgZGVmYXVsdCwgZG9tYWlucyBtYXkgbm90IGNyZWF0ZSBjYWNo ZWQgbWFwcGluZ3MgdG8gTU1JTyByZWdpb25zLgorVGhpcyBvcHRpb24gcmVs YXhlcyB0aGUgY2hlY2sgZm9yIERvbWFpbiAwIChvciB3aGVuIHVzaW5nIGBh bGxgLCBhbGwgUFYKK2RvbWFpbnMpLCB0byBwZXJtaXQgdGhlIHVzZSBvZiBj YWNoZWFibGUgTU1JTyBtYXBwaW5ncy4KKwogIyMjIG1zaQogPiBgPSA8Ym9v bGVhbj5gCiAKLS0tIGEveGVuL2FyY2gveDg2L2h2bS9tdHJyLmMKKysrIGIv eGVuL2FyY2gveDg2L2h2bS9tdHJyLmMKQEAgLTY5Myw4ICs2OTMsMTIgQEAg dWludDhfdCBlcHRlX2dldF9lbnRyeV9lbXQoc3RydWN0IGRvbWFpbgogICAg IGlmICggdi0+ZG9tYWluICE9IGQgKQogICAgICAgICB2ID0gZC0+dmNwdSA/ IGQtPnZjcHVbMF0gOiBOVUxMOwogCi0gICAgaWYgKCAhbWZuX3ZhbGlkKG1m bl94KG1mbikpICkKKyAgICBpZiAoICFtZm5fdmFsaWQobWZuX3gobWZuKSkg fHwKKyAgICAgICAgIHJhbmdlc2V0X2NvbnRhaW5zX3NpbmdsZXRvbihtbWlv X3JvX3JhbmdlcywgbWZuX3gobWZuKSkgKQorICAgIHsKKyAgICAgICAgKmlw YXQgPSAxOwogICAgICAgICByZXR1cm4gTVRSUl9UWVBFX1VOQ0FDSEFCTEU7 CisgICAgfQogCiAgICAgaWYgKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVh dHRyKGQsIGdmbiwgJnR5cGUpICkKICAgICAgICAgcmV0dXJuIHR5cGU7Ci0t LSBhL3hlbi9hcmNoL3g4Ni9tbS9wMm0tcHQuYworKysgYi94ZW4vYXJjaC94 ODYvbW0vcDJtLXB0LmMKQEAgLTkzLDYgKzkzLDggQEAgc3RhdGljIHVuc2ln bmVkIGxvbmcgcDJtX3R5cGVfdG9fZmxhZ3MocAogICAgIGNhc2UgcDJtX21t aW9fZGlyZWN0OgogICAgICAgICBpZiAoICFyYW5nZXNldF9jb250YWluc19z aW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1mbl94KG1mbikpICkKICAgICAg ICAgICAgIGZsYWdzIHw9IF9QQUdFX1JXOworICAgICAgICBlbHNlCisgICAg ICAgICAgICBmbGFncyB8PSBfUEFHRV9QV1Q7CiAgICAgICAgIHJldHVybiBm bGFncyB8IFAyTV9CQVNFX0ZMQUdTIHwgX1BBR0VfUENEOwogICAgIH0KIH0K LS0tIGEveGVuL2FyY2gveDg2L21tL3NoYWRvdy9tdWx0aS5jCisrKyBiL3hl bi9hcmNoL3g4Ni9tbS9zaGFkb3cvbXVsdGkuYwpAQCAtNTIxLDYgKzUyMSw3 IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgZ2ZuX3Qg dGFyZ2V0X2dmbiA9IGd1ZXN0X2wxZV9nZXRfZ2ZuKGd1ZXN0X2VudHJ5KTsK ICAgICB1MzIgcGFzc190aHJ1X2ZsYWdzOwogICAgIHUzMiBnZmxhZ3MsIHNm bGFnczsKKyAgICBib29sX3QgbW1pb19tZm47CiAKICAgICAvKiBXZSBkb24n dCBzaGFkb3cgUEFFIGwzcyAqLwogICAgIEFTU0VSVChHVUVTVF9QQUdJTkdf TEVWRUxTID4gMyB8fCBsZXZlbCAhPSAzKTsKQEAgLTU2MSw3ICs1NjIsMTAg QEAgX3NoX3Byb3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwKICAgICAvLyBtZm4g bWVhbnMgdGhhdCB3ZSBjYW4gbm90IHVzZWZ1bGx5IHNoYWRvdyBhbnl0aGlu ZywgYW5kIHNvIHdlCiAgICAgLy8gcmV0dXJuIGVhcmx5LgogICAgIC8vCi0g ICAgaWYgKCAhbWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgbW1pb19tZm4g PSAhbWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgICAgICAgICAgICB8fCAo bGV2ZWwgPT0gMQorICAgICAgICAgICAgICAgICAgICYmIHBhZ2VfZ2V0X293 bmVyKG1mbl90b19wYWdlKHRhcmdldF9tZm4pKSA9PSBkb21faW8pOworICAg IGlmICggbW1pb19tZm4KICAgICAgICAgICYmICEobGV2ZWwgPT0gMSAmJiAo IXNoYWRvd19tb2RlX3JlZmNvdW50cyhkKSAKICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgfHwgcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QpKSApCiAg ICAgewpAQCAtNTc5LDcgKzU4Myw3IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0 IHZjcHUgKnYsCiAgICAgICAgICAgICAgICAgICAgICAgIF9QQUdFX1JXIHwg X1BBR0VfUFJFU0VOVCk7CiAgICAgaWYgKCBndWVzdF9zdXBwb3J0c19ueCh2 KSApCiAgICAgICAgIHBhc3NfdGhydV9mbGFncyB8PSBfUEFHRV9OWF9CSVQ7 Ci0gICAgaWYgKCAhc2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmICFtZm5f dmFsaWQodGFyZ2V0X21mbikgKQorICAgIGlmICggbGV2ZWwgPT0gMSAmJiAh c2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmIG1taW9fbWZuICkKICAgICAg ICAgcGFzc190aHJ1X2ZsYWdzIHw9IF9QQUdFX1BBVCB8IF9QQUdFX1BDRCB8 IF9QQUdFX1BXVDsKICAgICBzZmxhZ3MgPSBnZmxhZ3MgJiBwYXNzX3RocnVf ZmxhZ3M7CiAKQEAgLTY3NiwxMCArNjgwLDE0IEBAIF9zaF9wcm9wYWdhdGUo c3RydWN0IHZjcHUgKnYsCiAgICAgfQogCiAgICAgLyogUmVhZC1vbmx5IG1l bW9yeSAqLwotICAgIGlmICggcDJtX2lzX3JlYWRvbmx5KHAybXQpIHx8Ci0g ICAgICAgICAocDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKLSAgICAgICAg ICByYW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMs IG1mbl94KHRhcmdldF9tZm4pKSkgKQorICAgIGlmICggcDJtX2lzX3JlYWRv bmx5KHAybXQpICkKICAgICAgICAgc2ZsYWdzICY9IH5fUEFHRV9SVzsKKyAg ICBlbHNlIGlmICggcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKKyAgICAg ICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9f cmFuZ2VzLCBtZm5feCh0YXJnZXRfbWZuKSkgKQorICAgIHsKKyAgICAgICAg c2ZsYWdzICY9IH4oX1BBR0VfUlcgfCBfUEFHRV9QQVQpOworICAgICAgICBz ZmxhZ3MgfD0gX1BBR0VfUENEIHwgX1BBR0VfUFdUOworICAgIH0KICAgICAK ICAgICAvLyBwcm90ZWN0IGd1ZXN0IHBhZ2UgdGFibGVzCiAgICAgLy8KQEAg LTEyMDEsMjIgKzEyMDksMjggQEAgc3RhdGljIGludCBzaGFkb3dfc2V0X2wx ZShzdHJ1Y3QgdmNwdSAqdgogICAgICAgICAgJiYgIXNoX2wxZV9pc19tYWdp YyhuZXdfc2wxZSkgKSAKICAgICB7CiAgICAgICAgIC8qIEFib3V0IHRvIGlu c3RhbGwgYSBuZXcgcmVmZXJlbmNlICovICAgICAgICAKLSAgICAgICAgaWYg KCBzaGFkb3dfbW9kZV9yZWZjb3VudHMoZCkgKSB7CisgICAgICAgIGlmICgg c2hhZG93X21vZGVfcmVmY291bnRzKGQpICkKKyAgICAgICAgeworI2RlZmlu ZSBQQUdFX0ZMSVBQQUJMRSAoX1BBR0VfUlcgfCBfUEFHRV9QV1QgfCBfUEFH RV9QQ0QgfCBfUEFHRV9QQVQpCisgICAgICAgICAgICBpbnQgcmM7CisKICAg ICAgICAgICAgIFRSQUNFX1NIQURPV19QQVRIX0ZMQUcoVFJDRV9TRkxBR19T SEFET1dfTDFfR0VUX1JFRik7Ci0gICAgICAgICAgICBzd2l0Y2ggKCBzaGFk b3dfZ2V0X3BhZ2VfZnJvbV9sMWUobmV3X3NsMWUsIGQsIG5ld190eXBlKSAp CisgICAgICAgICAgICBzd2l0Y2ggKCByYyA9IHNoYWRvd19nZXRfcGFnZV9m cm9tX2wxZShuZXdfc2wxZSwgZCwgbmV3X3R5cGUpICkKICAgICAgICAgICAg IHsKICAgICAgICAgICAgIGRlZmF1bHQ6CiAgICAgICAgICAgICAgICAgLyog RG9lc24ndCBsb29rIGxpa2UgYSBwYWdldGFibGUuICovCiAgICAgICAgICAg ICAgICAgZmxhZ3MgfD0gU0hBRE9XX1NFVF9FUlJPUjsKICAgICAgICAgICAg ICAgICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZW1wdHkoKTsKICAgICAgICAg ICAgICAgICBicmVhazsKLSAgICAgICAgICAgIGNhc2UgMToKLSAgICAgICAg ICAgICAgICBzaGFkb3dfbDFlX3JlbW92ZV9mbGFncyhuZXdfc2wxZSwgX1BB R0VfUlcpOworICAgICAgICAgICAgY2FzZSBQQUdFX0ZMSVBQQUJMRSAmIC1Q QUdFX0ZMSVBQQUJMRSAuLi4gUEFHRV9GTElQUEFCTEU6CisgICAgICAgICAg ICAgICAgQVNTRVJUKCEocmMgJiB+UEFHRV9GTElQUEFCTEUpKTsKKyAgICAg ICAgICAgICAgICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZmxpcF9mbGFncyhu ZXdfc2wxZSwgcmMpOwogICAgICAgICAgICAgICAgIC8qIGZhbGwgdGhyb3Vn aCAqLwogICAgICAgICAgICAgY2FzZSAwOgogICAgICAgICAgICAgICAgIHNo YWRvd192cmFtX2dldF9sMWUobmV3X3NsMWUsIHNsMWUsIHNsMW1mbiwgZCk7 CiAgICAgICAgICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICB9CisjdW5k ZWYgUEFHRV9GTElQUEFCTEUKICAgICAgICAgfQogICAgIH0gCiAKLS0tIGEv eGVuL2FyY2gveDg2L21tL3NoYWRvdy90eXBlcy5oCisrKyBiL3hlbi9hcmNo L3g4Ni9tbS9zaGFkb3cvdHlwZXMuaApAQCAtMTAwLDYgKzEwMCw5IEBAIHN0 YXRpYyBpbmxpbmUgdTMyIHNoYWRvd19sNGVfZ2V0X2ZsYWdzKHMKIHN0YXRp YyBpbmxpbmUgc2hhZG93X2wxZV90CiBzaGFkb3dfbDFlX3JlbW92ZV9mbGFn cyhzaGFkb3dfbDFlX3Qgc2wxZSwgdTMyIGZsYWdzKQogeyBsMWVfcmVtb3Zl X2ZsYWdzKHNsMWUsIGZsYWdzKTsgcmV0dXJuIHNsMWU7IH0KK3N0YXRpYyBp bmxpbmUgc2hhZG93X2wxZV90CitzaGFkb3dfbDFlX2ZsaXBfZmxhZ3Moc2hh ZG93X2wxZV90IHNsMWUsIHUzMiBmbGFncykKK3sgbDFlX2ZsaXBfZmxhZ3Mo c2wxZSwgZmxhZ3MpOyByZXR1cm4gc2wxZTsgfQogCiBzdGF0aWMgaW5saW5l IHNoYWRvd19sMWVfdCBzaGFkb3dfbDFlX2VtcHR5KHZvaWQpIAogeyByZXR1 cm4gbDFlX2VtcHR5KCk7IH0KLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysr IGIveGVuL2FyY2gveDg2L21tLmMKQEAgLTE4OCw2ICsxODgsMTggQEAgc3Rh dGljIHVpbnQzMl90IGJhc2VfZGlzYWxsb3dfbWFzazsKICAgICAgIGlzX3B2 X2RvbWFpbihkKSkgPyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBcCiAgICAgIEwxX0RJU0FMTE9XX01BU0sgOiAoTDFfRElTQUxM T1dfTUFTSyAmIH5QQUdFX0NBQ0hFX0FUVFJTKSkKIAorc3RhdGljIHM4IF9f cmVhZF9tb3N0bHkgb3B0X21taW9fcmVsYXg7CitzdGF0aWMgdm9pZCBfX2lu aXQgcGFyc2VfbW1pb19yZWxheChjb25zdCBjaGFyICpzKQoreworICAgIGlm ICggISpzICkKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSAxOworICAgIGVs c2UKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSBwYXJzZV9ib29sKHMpOwor ICAgIGlmICggb3B0X21taW9fcmVsYXggPCAwICYmIHN0cmNtcChzLCAiYWxs IikgKQorICAgICAgICBvcHRfbW1pb19yZWxheCA9IDA7Cit9CitjdXN0b21f cGFyYW0oIm1taW8tcmVsYXgiLCBwYXJzZV9tbWlvX3JlbGF4KTsKKwogc3Rh dGljIHZvaWQgX19pbml0IGluaXRfZnJhbWV0YWJsZV9jaHVuayh2b2lkICpz dGFydCwgdm9pZCAqZW5kKQogewogICAgIHVuc2lnbmVkIGxvbmcgcyA9ICh1 bnNpZ25lZCBsb25nKXN0YXJ0OwpAQCAtNzczLDYgKzc4NSw4IEBAIGdldF9w YWdlX2Zyb21fbDFlKAogICAgIGlmICggIW1mbl92YWxpZChtZm4pIHx8CiAg ICAgICAgICAocmVhbF9wZ19vd25lciA9IHBhZ2VfZ2V0X293bmVyX2FuZF9y ZWZlcmVuY2UocGFnZSkpID09IGRvbV9pbyApCiAgICAgeworICAgICAgICBp bnQgZmxpcCA9IDA7CisKICAgICAgICAgLyogT25seSBuZWVkZWQgdGhlIHJl ZmVyZW5jZSB0byBjb25maXJtIGRvbV9pbyBvd25lcnNoaXAuICovCiAgICAg ICAgIGlmICggbWZuX3ZhbGlkKG1mbikgKQogICAgICAgICAgICAgcHV0X3Bh Z2UocGFnZSk7CkBAIC04MDUsMTMgKzgxOSw0MSBAQCBnZXRfcGFnZV9mcm9t X2wxZSgKICAgICAgICAgICAgIHJldHVybiAtRUlOVkFMOwogICAgICAgICB9 CiAKLSAgICAgICAgaWYgKCAhKGwxZiAmIF9QQUdFX1JXKSB8fAotICAgICAg ICAgICAgICFyYW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19y YW5nZXMsIG1mbikgKQotICAgICAgICAgICAgcmV0dXJuIDA7Ci0gICAgICAg IGRwcmludGsoWEVOTE9HX0dfV0FSTklORywKLSAgICAgICAgICAgICAgICAi ZCVkOiBGb3JjaW5nIHJlYWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxuIiwK LSAgICAgICAgICAgICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZuKTsK LSAgICAgICAgcmV0dXJuIDE7CisgICAgICAgIGlmICggIXJhbmdlc2V0X2Nv bnRhaW5zX3NpbmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuKSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIC8qIE1NSU8gcGFnZXMgbXVzdCBub3QgYmUg bWFwcGVkIGNhY2hhYmxlIHVubGVzcyByZXF1ZXN0ZWQgc28uICovCisgICAg ICAgICAgICBzd2l0Y2ggKCBvcHRfbW1pb19yZWxheCApCisgICAgICAgICAg ICB7CisgICAgICAgICAgICBjYXNlIDA6CisgICAgICAgICAgICAgICAgYnJl YWs7CisgICAgICAgICAgICBjYXNlIDE6CisgICAgICAgICAgICAgICAgaWYg KCBpc19oYXJkd2FyZV9kb21haW4obDFlX293bmVyKSApCisgICAgICAgICAg ICBjYXNlIC0xOgorICAgICAgICAgICAgICAgICAgICByZXR1cm4gMDsKKyAg ICAgICAgICAgIGRlZmF1bHQ6CisgICAgICAgICAgICAgICAgQVNTRVJUX1VO UkVBQ0hBQkxFKCk7CisgICAgICAgICAgICB9CisgICAgICAgIH0KKyAgICAg ICAgZWxzZSBpZiAoIGwxZiAmIF9QQUdFX1JXICkKKyAgICAgICAgeworICAg ICAgICAgICAgZHByaW50ayhYRU5MT0dfR19XQVJOSU5HLAorICAgICAgICAg ICAgICAgICAgICAiZCVkOiBGb3JjaW5nIHJlYWQtb25seSBhY2Nlc3MgdG8g TUZOICVseFxuIiwKKyAgICAgICAgICAgICAgICAgICAgbDFlX293bmVyLT5k b21haW5faWQsIG1mbik7CisgICAgICAgICAgICBmbGlwID0gX1BBR0VfUlc7 CisgICAgICAgIH0KKworICAgICAgICBzd2l0Y2ggKCBsMWYgJiBQQUdFX0NB Q0hFX0FUVFJTICkKKyAgICAgICAgeworICAgICAgICBjYXNlIDA6IC8qIFdC ICovCisgICAgICAgICAgICBmbGlwIHw9IF9QQUdFX1BXVCB8IF9QQUdFX1BD RDsKKyAgICAgICAgICAgIGJyZWFrOworICAgICAgICBjYXNlIF9QQUdFX1BX VDogLyogV1QgKi8KKyAgICAgICAgY2FzZSBfUEFHRV9QV1QgfCBfUEFHRV9Q QVQ6IC8qIFdQICovCisgICAgICAgICAgICBmbGlwIHw9IF9QQUdFX1BDRCB8 IChsMWYgJiBfUEFHRV9QQVQpOworICAgICAgICAgICAgYnJlYWs7CisgICAg ICAgIH0KKworICAgICAgICByZXR1cm4gZmxpcDsKICAgICB9CiAKICAgICBp ZiAoIHVubGlrZWx5KCAocmVhbF9wZ19vd25lciAhPSBwZ19vd25lcikgJiYK QEAgLTEyMTAsOCArMTI1Miw5IEBAIHN0YXRpYyBpbnQgYWxsb2NfbDFfdGFi bGUoc3RydWN0IHBhZ2VfaW4KICAgICAgICAgICAgICAgICBnb3RvIGZhaWw7 CiAgICAgICAgICAgICBjYXNlIDA6CiAgICAgICAgICAgICAgICAgYnJlYWs7 Ci0gICAgICAgICAgICBjYXNlIDE6Ci0gICAgICAgICAgICAgICAgbDFlX3Jl bW92ZV9mbGFncyhwbDFlW2ldLCBfUEFHRV9SVyk7CisgICAgICAgICAgICBj YXNlIF9QQUdFX1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6 CisgICAgICAgICAgICAgICAgQVNTRVJUKCEocmV0ICYgfihfUEFHRV9SVyB8 IFBBR0VfQ0FDSEVfQVRUUlMpKSk7CisgICAgICAgICAgICAgICAgbDFlX2Zs aXBfZmxhZ3MocGwxZVtpXSwgcmV0KTsKICAgICAgICAgICAgICAgICBicmVh azsKICAgICAgICAgICAgIH0KIApAQCAtMTcwNiw4ICsxNzQ5LDkgQEAgc3Rh dGljIGludCBtb2RfbDFfZW50cnkobDFfcGdlbnRyeV90ICpwbAogICAgICAg ICAgICAgcmV0dXJuIC1FSU5WQUw7CiAgICAgICAgIH0KIAotICAgICAgICAv KiBGYXN0IHBhdGggZm9yIGlkZW50aWNhbCBtYXBwaW5nLCByL3cgYW5kIHBy ZXNlbmNlLiAqLwotICAgICAgICBpZiAoICFsMWVfaGFzX2NoYW5nZWQob2wx ZSwgbmwxZSwgX1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5UKSApCisgICAgICAg IC8qIEZhc3QgcGF0aCBmb3IgaWRlbnRpY2FsIG1hcHBpbmcsIHIvdywgcHJl c2VuY2UsIGFuZCBjYWNoYWJpbGl0eS4gKi8KKyAgICAgICAgaWYgKCAhbDFl X2hhc19jaGFuZ2VkKG9sMWUsIG5sMWUsCisgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBQQUdFX0NBQ0hFX0FUVFJTIHwgX1BBR0VfUlcgfCBfUEFH RV9QUkVTRU5UKSApCiAgICAgICAgIHsKICAgICAgICAgICAgIGFkanVzdF9n dWVzdF9sMWUobmwxZSwgcHRfZG9tKTsKICAgICAgICAgICAgIGlmICggVVBE QVRFX0VOVFJZKGwxLCBwbDFlLCBvbDFlLCBubDFlLCBnbDFtZm4sIHB0X3Zj cHUsCkBAIC0xNzMwLDggKzE3NzQsOSBAQCBzdGF0aWMgaW50IG1vZF9sMV9l bnRyeShsMV9wZ2VudHJ5X3QgKnBsCiAgICAgICAgICAgICByZXR1cm4gcmM7 CiAgICAgICAgIGNhc2UgMDoKICAgICAgICAgICAgIGJyZWFrOwotICAgICAg ICBjYXNlIDE6Ci0gICAgICAgICAgICBsMWVfcmVtb3ZlX2ZsYWdzKG5sMWUs IF9QQUdFX1JXKTsKKyAgICAgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0Vf UlcgfCBQQUdFX0NBQ0hFX0FUVFJTOgorICAgICAgICAgICAgQVNTRVJUKCEo cmMgJiB+KF9QQUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUykpKTsKKyAgICAg ICAgICAgIGwxZV9mbGlwX2ZsYWdzKG5sMWUsIHJjKTsKICAgICAgICAgICAg IHJjID0gMDsKICAgICAgICAgICAgIGJyZWFrOwogICAgICAgICB9CkBAIC00 OTE5LDYgKzQ5NjQsNyBAQCBzdGF0aWMgaW50IHB0d3JfZW11bGF0ZWRfdXBk YXRlKAogICAgIGwxX3BnZW50cnlfdCBwdGUsIG9sMWUsIG5sMWUsICpwbDFl OwogICAgIHN0cnVjdCB2Y3B1ICp2ID0gY3VycmVudDsKICAgICBzdHJ1Y3Qg ZG9tYWluICpkID0gdi0+ZG9tYWluOworICAgIGludCByZXQ7CiAKICAgICAv KiBPbmx5IGFsbG93IG5hdHVyYWxseS1hbGlnbmVkIHN0b3JlcyB3aXRoaW4g dGhlIG9yaWdpbmFsICVjcjIgcGFnZS4gKi8KICAgICBpZiAoIHVubGlrZWx5 KCgoYWRkcl5wdHdyX2N0eHQtPmNyMikgJiBQQUdFX01BU0spIHx8IChhZGRy ICYgKGJ5dGVzLTEpKSkgKQpAQCAtNDk2Niw3ICs1MDEyLDcgQEAgc3RhdGlj IGludCBwdHdyX2VtdWxhdGVkX3VwZGF0ZSgKIAogICAgIC8qIENoZWNrIHRo ZSBuZXcgUFRFLiAqLwogICAgIG5sMWUgPSBsMWVfZnJvbV9pbnRwdGUodmFs KTsKLSAgICBzd2l0Y2ggKCBnZXRfcGFnZV9mcm9tX2wxZShubDFlLCBkLCBk KSApCisgICAgc3dpdGNoICggcmV0ID0gZ2V0X3BhZ2VfZnJvbV9sMWUobmwx ZSwgZCwgZCkgKQogICAgIHsKICAgICBkZWZhdWx0OgogICAgICAgICBpZiAo IGlzX3B2XzMyYml0X2RvbWFpbihkKSAmJiAoYnl0ZXMgPT0gNCkgJiYgKHVu YWxpZ25lZF9hZGRyICYgNCkgJiYKQEAgLTQ5OTAsOCArNTAzNiw5IEBAIHN0 YXRpYyBpbnQgcHR3cl9lbXVsYXRlZF91cGRhdGUoCiAgICAgICAgIGJyZWFr OwogICAgIGNhc2UgMDoKICAgICAgICAgYnJlYWs7Ci0gICAgY2FzZSAxOgot ICAgICAgICBsMWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JXKTsKKyAg ICBjYXNlIF9QQUdFX1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRU UlM6CisgICAgICAgIEFTU0VSVCghKHJldCAmIH4oX1BBR0VfUlcgfCBQQUdF X0NBQ0hFX0FUVFJTKSkpOworICAgICAgICBsMWVfZmxpcF9mbGFncyhubDFl LCByZXQpOwogICAgICAgICBicmVhazsKICAgICB9CiAKLS0tIGEveGVuL2lu Y2x1ZGUvYXNtLXg4Ni9wYWdlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4 Ni9wYWdlLmgKQEAgLTE1Nyw2ICsxNTcsOSBAQCBzdGF0aWMgaW5saW5lIGw0 X3BnZW50cnlfdCBsNGVfZnJvbV9wYWRkCiAjZGVmaW5lIGwzZV9yZW1vdmVf ZmxhZ3MoeCwgZmxhZ3MpICgoeCkubDMgJj0gfnB1dF9wdGVfZmxhZ3MoZmxh Z3MpKQogI2RlZmluZSBsNGVfcmVtb3ZlX2ZsYWdzKHgsIGZsYWdzKSAoKHgp Lmw0ICY9IH5wdXRfcHRlX2ZsYWdzKGZsYWdzKSkKIAorLyogRmxpcCBmbGFn cyBpbiBhbiBleGlzdGluZyBMMSBQVEUuICovCisjZGVmaW5lIGwxZV9mbGlw X2ZsYWdzKHgsIGZsYWdzKSAgICAoKHgpLmwxIF49IHB1dF9wdGVfZmxhZ3Mo ZmxhZ3MpKQorCiAvKiBDaGVjayBpZiBhIHB0ZSdzIHBhZ2UgbWFwcGluZyBv ciBzaWduaWZpY2FudCBhY2Nlc3MgZmxhZ3MgaGF2ZSBjaGFuZ2VkLiAqLwog I2RlZmluZSBsMWVfaGFzX2NoYW5nZWQoeCx5LGZsYWdzKSBcCiAgICAgKCAh ISgoKHgpLmwxIF4gKHkpLmwxKSAmICgoUEFERFJfTUFTSyZQQUdFX01BU0sp fHB1dF9wdGVfZmxhZ3MoZmxhZ3MpKSkgKQo= --=separator Content-Type: application/octet-stream; name="xsa154-4.5.patch" Content-Disposition: attachment; filename="xsa154-4.5.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xMDAwLDYgKzEwMDAsMTUgQEAg bGltaXQgaXMgaWdub3JlZCBieSBYZW4uCiAKIFNwZWNpZnkgaWYgdGhlIE1N Q29uZmlnIHNwYWNlIHNob3VsZCBiZSBlbmFibGVkLgogCisjIyMgbW1pby1y ZWxheAorPiBgPSA8Ym9vbGVhbj4gfCBhbGxgCisKKz4gRGVmYXVsdDogYGZh bHNlYAorCitCeSBkZWZhdWx0LCBkb21haW5zIG1heSBub3QgY3JlYXRlIGNh Y2hlZCBtYXBwaW5ncyB0byBNTUlPIHJlZ2lvbnMuCitUaGlzIG9wdGlvbiBy ZWxheGVzIHRoZSBjaGVjayBmb3IgRG9tYWluIDAgKG9yIHdoZW4gdXNpbmcg YGFsbGAsIGFsbCBQVgorZG9tYWlucyksIHRvIHBlcm1pdCB0aGUgdXNlIG9m IGNhY2hlYWJsZSBNTUlPIG1hcHBpbmdzLgorCiAjIyMgbXNpCiA+IGA9IDxi b29sZWFuPmAKIAotLS0gYS94ZW4vYXJjaC94ODYvaHZtL210cnIuYworKysg Yi94ZW4vYXJjaC94ODYvaHZtL210cnIuYwpAQCAtODEwLDggKzgxMCwxNyBA QCBpbnQgZXB0ZV9nZXRfZW50cnlfZW10KHN0cnVjdCBkb21haW4gKmQsCiAg ICAgaWYgKCB2LT5kb21haW4gIT0gZCApCiAgICAgICAgIHYgPSBkLT52Y3B1 ID8gZC0+dmNwdVswXSA6IE5VTEw7CiAKLSAgICBpZiAoICFtZm5fdmFsaWQo bWZuX3gobWZuKSkgKQorICAgIGlmICggIW1mbl92YWxpZChtZm5feChtZm4p KSB8fAorICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfcmFuZ2UobW1pb19y b19yYW5nZXMsIG1mbl94KG1mbiksCisgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBtZm5feChtZm4pICsgKDFVTCA8PCBvcmRlcikgLSAxKSAp CisgICAgeworICAgICAgICAqaXBhdCA9IDE7CiAgICAgICAgIHJldHVybiBN VFJSX1RZUEVfVU5DQUNIQUJMRTsKKyAgICB9CisKKyAgICBpZiAoIHJhbmdl c2V0X292ZXJsYXBzX3JhbmdlKG1taW9fcm9fcmFuZ2VzLCBtZm5feChtZm4p LAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgbWZuX3gobWZu KSArICgxVUwgPDwgb3JkZXIpIC0gMSkgKQorICAgICAgICByZXR1cm4gLTE7 CiAKICAgICBzd2l0Y2ggKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVhdHRy KGQsIGdmbiwgb3JkZXIsICZ0eXBlKSApCiAgICAgewotLS0gYS94ZW4vYXJj aC94ODYvbW0vcDJtLXB0LmMKKysrIGIveGVuL2FyY2gveDg2L21tL3AybS1w dC5jCkBAIC0xMDcsNiArMTA3LDggQEAgc3RhdGljIHVuc2lnbmVkIGxvbmcg cDJtX3R5cGVfdG9fZmxhZ3MocAogICAgIGNhc2UgcDJtX21taW9fZGlyZWN0 OgogICAgICAgICBpZiAoICFyYW5nZXNldF9jb250YWluc19zaW5nbGV0b24o bW1pb19yb19yYW5nZXMsIG1mbl94KG1mbikpICkKICAgICAgICAgICAgIGZs YWdzIHw9IF9QQUdFX1JXOworICAgICAgICBlbHNlCisgICAgICAgICAgICBm bGFncyB8PSBfUEFHRV9QV1Q7CiAgICAgICAgIHJldHVybiBmbGFncyB8IFAy TV9CQVNFX0ZMQUdTIHwgX1BBR0VfUENEOwogICAgIH0KIH0KLS0tIGEveGVu L2FyY2gveDg2L21tL3NoYWRvdy9tdWx0aS5jCisrKyBiL3hlbi9hcmNoL3g4 Ni9tbS9zaGFkb3cvbXVsdGkuYwpAQCAtNTIxLDYgKzUyMSw3IEBAIF9zaF9w cm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgZ2ZuX3QgdGFyZ2V0X2dm biA9IGd1ZXN0X2wxZV9nZXRfZ2ZuKGd1ZXN0X2VudHJ5KTsKICAgICB1MzIg cGFzc190aHJ1X2ZsYWdzOwogICAgIHUzMiBnZmxhZ3MsIHNmbGFnczsKKyAg ICBib29sX3QgbW1pb19tZm47CiAKICAgICAvKiBXZSBkb24ndCBzaGFkb3cg UEFFIGwzcyAqLwogICAgIEFTU0VSVChHVUVTVF9QQUdJTkdfTEVWRUxTID4g MyB8fCBsZXZlbCAhPSAzKTsKQEAgLTU2MSw3ICs1NjIsMTAgQEAgX3NoX3By b3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwKICAgICAvLyBtZm4gbWVhbnMgdGhh dCB3ZSBjYW4gbm90IHVzZWZ1bGx5IHNoYWRvdyBhbnl0aGluZywgYW5kIHNv IHdlCiAgICAgLy8gcmV0dXJuIGVhcmx5LgogICAgIC8vCi0gICAgaWYgKCAh bWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgbW1pb19tZm4gPSAhbWZuX3Zh bGlkKHRhcmdldF9tZm4pCisgICAgICAgICAgICAgICB8fCAobGV2ZWwgPT0g MQorICAgICAgICAgICAgICAgICAgICYmIHBhZ2VfZ2V0X293bmVyKG1mbl90 b19wYWdlKHRhcmdldF9tZm4pKSA9PSBkb21faW8pOworICAgIGlmICggbW1p b19tZm4KICAgICAgICAgICYmICEobGV2ZWwgPT0gMSAmJiAoIXNoYWRvd19t b2RlX3JlZmNvdW50cyhkKSAKICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgfHwgcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QpKSApCiAgICAgewpAQCAt NTc5LDcgKzU4Myw3IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUgKnYs CiAgICAgICAgICAgICAgICAgICAgICAgIF9QQUdFX1JXIHwgX1BBR0VfUFJF U0VOVCk7CiAgICAgaWYgKCBndWVzdF9zdXBwb3J0c19ueCh2KSApCiAgICAg ICAgIHBhc3NfdGhydV9mbGFncyB8PSBfUEFHRV9OWF9CSVQ7Ci0gICAgaWYg KCAhc2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmICFtZm5fdmFsaWQodGFy Z2V0X21mbikgKQorICAgIGlmICggbGV2ZWwgPT0gMSAmJiAhc2hhZG93X21v ZGVfcmVmY291bnRzKGQpICYmIG1taW9fbWZuICkKICAgICAgICAgcGFzc190 aHJ1X2ZsYWdzIHw9IF9QQUdFX1BBVCB8IF9QQUdFX1BDRCB8IF9QQUdFX1BX VDsKICAgICBzZmxhZ3MgPSBnZmxhZ3MgJiBwYXNzX3RocnVfZmxhZ3M7CiAK QEAgLTY3OCwxMCArNjgyLDE0IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZj cHUgKnYsCiAgICAgfQogCiAgICAgLyogUmVhZC1vbmx5IG1lbW9yeSAqLwot ICAgIGlmICggcDJtX2lzX3JlYWRvbmx5KHAybXQpIHx8Ci0gICAgICAgICAo cDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKLSAgICAgICAgICByYW5nZXNl dF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1mbl94KHRh cmdldF9tZm4pKSkgKQorICAgIGlmICggcDJtX2lzX3JlYWRvbmx5KHAybXQp ICkKICAgICAgICAgc2ZsYWdzICY9IH5fUEFHRV9SVzsKKyAgICBlbHNlIGlm ICggcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKKyAgICAgICAgICAgICAg cmFuZ2VzZXRfY29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9fcmFuZ2VzLCBt Zm5feCh0YXJnZXRfbWZuKSkgKQorICAgIHsKKyAgICAgICAgc2ZsYWdzICY9 IH4oX1BBR0VfUlcgfCBfUEFHRV9QQVQpOworICAgICAgICBzZmxhZ3MgfD0g X1BBR0VfUENEIHwgX1BBR0VfUFdUOworICAgIH0KICAgICAKICAgICAvLyBw cm90ZWN0IGd1ZXN0IHBhZ2UgdGFibGVzCiAgICAgLy8KQEAgLTExODgsMjIg KzExOTYsMjggQEAgc3RhdGljIGludCBzaGFkb3dfc2V0X2wxZShzdHJ1Y3Qg dmNwdSAqdgogICAgICAgICAgJiYgIXNoX2wxZV9pc19tYWdpYyhuZXdfc2wx ZSkgKSAKICAgICB7CiAgICAgICAgIC8qIEFib3V0IHRvIGluc3RhbGwgYSBu ZXcgcmVmZXJlbmNlICovICAgICAgICAKLSAgICAgICAgaWYgKCBzaGFkb3df bW9kZV9yZWZjb3VudHMoZCkgKSB7CisgICAgICAgIGlmICggc2hhZG93X21v ZGVfcmVmY291bnRzKGQpICkKKyAgICAgICAgeworI2RlZmluZSBQQUdFX0ZM SVBQQUJMRSAoX1BBR0VfUlcgfCBfUEFHRV9QV1QgfCBfUEFHRV9QQ0QgfCBf UEFHRV9QQVQpCisgICAgICAgICAgICBpbnQgcmM7CisKICAgICAgICAgICAg IFRSQUNFX1NIQURPV19QQVRIX0ZMQUcoVFJDRV9TRkxBR19TSEFET1dfTDFf R0VUX1JFRik7Ci0gICAgICAgICAgICBzd2l0Y2ggKCBzaGFkb3dfZ2V0X3Bh Z2VfZnJvbV9sMWUobmV3X3NsMWUsIGQsIG5ld190eXBlKSApCisgICAgICAg ICAgICBzd2l0Y2ggKCByYyA9IHNoYWRvd19nZXRfcGFnZV9mcm9tX2wxZShu ZXdfc2wxZSwgZCwgbmV3X3R5cGUpICkKICAgICAgICAgICAgIHsKICAgICAg ICAgICAgIGRlZmF1bHQ6CiAgICAgICAgICAgICAgICAgLyogRG9lc24ndCBs b29rIGxpa2UgYSBwYWdldGFibGUuICovCiAgICAgICAgICAgICAgICAgZmxh Z3MgfD0gU0hBRE9XX1NFVF9FUlJPUjsKICAgICAgICAgICAgICAgICBuZXdf c2wxZSA9IHNoYWRvd19sMWVfZW1wdHkoKTsKICAgICAgICAgICAgICAgICBi cmVhazsKLSAgICAgICAgICAgIGNhc2UgMToKLSAgICAgICAgICAgICAgICBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncyhuZXdfc2wxZSwgX1BBR0VfUlcpOwor ICAgICAgICAgICAgY2FzZSBQQUdFX0ZMSVBQQUJMRSAmIC1QQUdFX0ZMSVBQ QUJMRSAuLi4gUEFHRV9GTElQUEFCTEU6CisgICAgICAgICAgICAgICAgQVNT RVJUKCEocmMgJiB+UEFHRV9GTElQUEFCTEUpKTsKKyAgICAgICAgICAgICAg ICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZmxpcF9mbGFncyhuZXdfc2wxZSwg cmMpOwogICAgICAgICAgICAgICAgIC8qIGZhbGwgdGhyb3VnaCAqLwogICAg ICAgICAgICAgY2FzZSAwOgogICAgICAgICAgICAgICAgIHNoYWRvd192cmFt X2dldF9sMWUobmV3X3NsMWUsIHNsMWUsIHNsMW1mbiwgZCk7CiAgICAgICAg ICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICB9CisjdW5kZWYgUEFHRV9G TElQUEFCTEUKICAgICAgICAgfQogICAgIH0gCiAKLS0tIGEveGVuL2FyY2gv eDg2L21tL3NoYWRvdy90eXBlcy5oCisrKyBiL3hlbi9hcmNoL3g4Ni9tbS9z aGFkb3cvdHlwZXMuaApAQCAtMTAwLDYgKzEwMCw5IEBAIHN0YXRpYyBpbmxp bmUgdTMyIHNoYWRvd19sNGVfZ2V0X2ZsYWdzKHMKIHN0YXRpYyBpbmxpbmUg c2hhZG93X2wxZV90CiBzaGFkb3dfbDFlX3JlbW92ZV9mbGFncyhzaGFkb3df bDFlX3Qgc2wxZSwgdTMyIGZsYWdzKQogeyBsMWVfcmVtb3ZlX2ZsYWdzKHNs MWUsIGZsYWdzKTsgcmV0dXJuIHNsMWU7IH0KK3N0YXRpYyBpbmxpbmUgc2hh ZG93X2wxZV90CitzaGFkb3dfbDFlX2ZsaXBfZmxhZ3Moc2hhZG93X2wxZV90 IHNsMWUsIHUzMiBmbGFncykKK3sgbDFlX2ZsaXBfZmxhZ3Moc2wxZSwgZmxh Z3MpOyByZXR1cm4gc2wxZTsgfQogCiBzdGF0aWMgaW5saW5lIHNoYWRvd19s MWVfdCBzaGFkb3dfbDFlX2VtcHR5KHZvaWQpIAogeyByZXR1cm4gbDFlX2Vt cHR5KCk7IH0KLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysrIGIveGVuL2Fy Y2gveDg2L21tLmMKQEAgLTE4MSw2ICsxODEsMTggQEAgc3RhdGljIHVpbnQz Ml90IGJhc2VfZGlzYWxsb3dfbWFzazsKICAgICAgIGlzX3B2X2RvbWFpbihk KSkgPyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CiAgICAgIEwxX0RJU0FMTE9XX01BU0sgOiAoTDFfRElTQUxMT1dfTUFTSyAm IH5QQUdFX0NBQ0hFX0FUVFJTKSkKIAorc3RhdGljIHM4IF9fcmVhZF9tb3N0 bHkgb3B0X21taW9fcmVsYXg7CitzdGF0aWMgdm9pZCBfX2luaXQgcGFyc2Vf bW1pb19yZWxheChjb25zdCBjaGFyICpzKQoreworICAgIGlmICggISpzICkK KyAgICAgICAgb3B0X21taW9fcmVsYXggPSAxOworICAgIGVsc2UKKyAgICAg ICAgb3B0X21taW9fcmVsYXggPSBwYXJzZV9ib29sKHMpOworICAgIGlmICgg b3B0X21taW9fcmVsYXggPCAwICYmIHN0cmNtcChzLCAiYWxsIikgKQorICAg ICAgICBvcHRfbW1pb19yZWxheCA9IDA7Cit9CitjdXN0b21fcGFyYW0oIm1t aW8tcmVsYXgiLCBwYXJzZV9tbWlvX3JlbGF4KTsKKwogc3RhdGljIHZvaWQg X19pbml0IGluaXRfZnJhbWV0YWJsZV9jaHVuayh2b2lkICpzdGFydCwgdm9p ZCAqZW5kKQogewogICAgIHVuc2lnbmVkIGxvbmcgcyA9ICh1bnNpZ25lZCBs b25nKXN0YXJ0OwpAQCAtNzY2LDYgKzc3OCw4IEBAIGdldF9wYWdlX2Zyb21f bDFlKAogICAgIGlmICggIW1mbl92YWxpZChtZm4pIHx8CiAgICAgICAgICAo cmVhbF9wZ19vd25lciA9IHBhZ2VfZ2V0X293bmVyX2FuZF9yZWZlcmVuY2Uo cGFnZSkpID09IGRvbV9pbyApCiAgICAgeworICAgICAgICBpbnQgZmxpcCA9 IDA7CisKICAgICAgICAgLyogT25seSBuZWVkZWQgdGhlIHJlZmVyZW5jZSB0 byBjb25maXJtIGRvbV9pbyBvd25lcnNoaXAuICovCiAgICAgICAgIGlmICgg bWZuX3ZhbGlkKG1mbikgKQogICAgICAgICAgICAgcHV0X3BhZ2UocGFnZSk7 CkBAIC03OTgsMTMgKzgxMiw0MSBAQCBnZXRfcGFnZV9mcm9tX2wxZSgKICAg ICAgICAgICAgIHJldHVybiAtRUlOVkFMOwogICAgICAgICB9CiAKLSAgICAg ICAgaWYgKCAhKGwxZiAmIF9QQUdFX1JXKSB8fAotICAgICAgICAgICAgICFy YW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1m bikgKQotICAgICAgICAgICAgcmV0dXJuIDA7Ci0gICAgICAgIGRwcmludGso WEVOTE9HX0dfV0FSTklORywKLSAgICAgICAgICAgICAgICAiZCVkOiBGb3Jj aW5nIHJlYWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxuIiwKLSAgICAgICAg ICAgICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZuKTsKLSAgICAgICAg cmV0dXJuIDE7CisgICAgICAgIGlmICggIXJhbmdlc2V0X2NvbnRhaW5zX3Np bmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuKSApCisgICAgICAgIHsKKyAg ICAgICAgICAgIC8qIE1NSU8gcGFnZXMgbXVzdCBub3QgYmUgbWFwcGVkIGNh Y2hhYmxlIHVubGVzcyByZXF1ZXN0ZWQgc28uICovCisgICAgICAgICAgICBz d2l0Y2ggKCBvcHRfbW1pb19yZWxheCApCisgICAgICAgICAgICB7CisgICAg ICAgICAgICBjYXNlIDA6CisgICAgICAgICAgICAgICAgYnJlYWs7CisgICAg ICAgICAgICBjYXNlIDE6CisgICAgICAgICAgICAgICAgaWYgKCBpc19oYXJk d2FyZV9kb21haW4obDFlX293bmVyKSApCisgICAgICAgICAgICBjYXNlIC0x OgorICAgICAgICAgICAgICAgICAgICByZXR1cm4gMDsKKyAgICAgICAgICAg IGRlZmF1bHQ6CisgICAgICAgICAgICAgICAgQVNTRVJUX1VOUkVBQ0hBQkxF KCk7CisgICAgICAgICAgICB9CisgICAgICAgIH0KKyAgICAgICAgZWxzZSBp ZiAoIGwxZiAmIF9QQUdFX1JXICkKKyAgICAgICAgeworICAgICAgICAgICAg ZHByaW50ayhYRU5MT0dfR19XQVJOSU5HLAorICAgICAgICAgICAgICAgICAg ICAiZCVkOiBGb3JjaW5nIHJlYWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxu IiwKKyAgICAgICAgICAgICAgICAgICAgbDFlX293bmVyLT5kb21haW5faWQs IG1mbik7CisgICAgICAgICAgICBmbGlwID0gX1BBR0VfUlc7CisgICAgICAg IH0KKworICAgICAgICBzd2l0Y2ggKCBsMWYgJiBQQUdFX0NBQ0hFX0FUVFJT ICkKKyAgICAgICAgeworICAgICAgICBjYXNlIDA6IC8qIFdCICovCisgICAg ICAgICAgICBmbGlwIHw9IF9QQUdFX1BXVCB8IF9QQUdFX1BDRDsKKyAgICAg ICAgICAgIGJyZWFrOworICAgICAgICBjYXNlIF9QQUdFX1BXVDogLyogV1Qg Ki8KKyAgICAgICAgY2FzZSBfUEFHRV9QV1QgfCBfUEFHRV9QQVQ6IC8qIFdQ ICovCisgICAgICAgICAgICBmbGlwIHw9IF9QQUdFX1BDRCB8IChsMWYgJiBf UEFHRV9QQVQpOworICAgICAgICAgICAgYnJlYWs7CisgICAgICAgIH0KKwor ICAgICAgICByZXR1cm4gZmxpcDsKICAgICB9CiAKICAgICBpZiAoIHVubGlr ZWx5KCAocmVhbF9wZ19vd25lciAhPSBwZ19vd25lcikgJiYKQEAgLTExOTQs OCArMTIzNiw5IEBAIHN0YXRpYyBpbnQgYWxsb2NfbDFfdGFibGUoc3RydWN0 IHBhZ2VfaW4KICAgICAgICAgICAgICAgICBnb3RvIGZhaWw7CiAgICAgICAg ICAgICBjYXNlIDA6CiAgICAgICAgICAgICAgICAgYnJlYWs7Ci0gICAgICAg ICAgICBjYXNlIDE6Ci0gICAgICAgICAgICAgICAgbDFlX3JlbW92ZV9mbGFn cyhwbDFlW2ldLCBfUEFHRV9SVyk7CisgICAgICAgICAgICBjYXNlIF9QQUdF X1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6CisgICAgICAg ICAgICAgICAgQVNTRVJUKCEocmV0ICYgfihfUEFHRV9SVyB8IFBBR0VfQ0FD SEVfQVRUUlMpKSk7CisgICAgICAgICAgICAgICAgbDFlX2ZsaXBfZmxhZ3Mo cGwxZVtpXSwgcmV0KTsKICAgICAgICAgICAgICAgICBicmVhazsKICAgICAg ICAgICAgIH0KIApAQCAtMTY5MCw4ICsxNzMzLDkgQEAgc3RhdGljIGludCBt b2RfbDFfZW50cnkobDFfcGdlbnRyeV90ICpwbAogICAgICAgICAgICAgcmV0 dXJuIC1FSU5WQUw7CiAgICAgICAgIH0KIAotICAgICAgICAvKiBGYXN0IHBh dGggZm9yIGlkZW50aWNhbCBtYXBwaW5nLCByL3cgYW5kIHByZXNlbmNlLiAq LwotICAgICAgICBpZiAoICFsMWVfaGFzX2NoYW5nZWQob2wxZSwgbmwxZSwg X1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5UKSApCisgICAgICAgIC8qIEZhc3Qg cGF0aCBmb3IgaWRlbnRpY2FsIG1hcHBpbmcsIHIvdywgcHJlc2VuY2UsIGFu ZCBjYWNoYWJpbGl0eS4gKi8KKyAgICAgICAgaWYgKCAhbDFlX2hhc19jaGFu Z2VkKG9sMWUsIG5sMWUsCisgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICBQQUdFX0NBQ0hFX0FUVFJTIHwgX1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5U KSApCiAgICAgICAgIHsKICAgICAgICAgICAgIGFkanVzdF9ndWVzdF9sMWUo bmwxZSwgcHRfZG9tKTsKICAgICAgICAgICAgIGlmICggVVBEQVRFX0VOVFJZ KGwxLCBwbDFlLCBvbDFlLCBubDFlLCBnbDFtZm4sIHB0X3ZjcHUsCkBAIC0x NzE0LDggKzE3NTgsOSBAQCBzdGF0aWMgaW50IG1vZF9sMV9lbnRyeShsMV9w Z2VudHJ5X3QgKnBsCiAgICAgICAgICAgICByZXR1cm4gcmM7CiAgICAgICAg IGNhc2UgMDoKICAgICAgICAgICAgIGJyZWFrOwotICAgICAgICBjYXNlIDE6 Ci0gICAgICAgICAgICBsMWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JX KTsKKyAgICAgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0VfUlcgfCBQQUdF X0NBQ0hFX0FUVFJTOgorICAgICAgICAgICAgQVNTRVJUKCEocmMgJiB+KF9Q QUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUykpKTsKKyAgICAgICAgICAgIGwx ZV9mbGlwX2ZsYWdzKG5sMWUsIHJjKTsKICAgICAgICAgICAgIHJjID0gMDsK ICAgICAgICAgICAgIGJyZWFrOwogICAgICAgICB9CkBAIC00OTIwLDYgKzQ5 NjUsNyBAQCBzdGF0aWMgaW50IHB0d3JfZW11bGF0ZWRfdXBkYXRlKAogICAg IGwxX3BnZW50cnlfdCBwdGUsIG9sMWUsIG5sMWUsICpwbDFlOwogICAgIHN0 cnVjdCB2Y3B1ICp2ID0gY3VycmVudDsKICAgICBzdHJ1Y3QgZG9tYWluICpk ID0gdi0+ZG9tYWluOworICAgIGludCByZXQ7CiAKICAgICAvKiBPbmx5IGFs bG93IG5hdHVyYWxseS1hbGlnbmVkIHN0b3JlcyB3aXRoaW4gdGhlIG9yaWdp bmFsICVjcjIgcGFnZS4gKi8KICAgICBpZiAoIHVubGlrZWx5KCgoYWRkcl5w dHdyX2N0eHQtPmNyMikgJiBQQUdFX01BU0spIHx8IChhZGRyICYgKGJ5dGVz LTEpKSkgKQpAQCAtNDk2Nyw3ICs1MDEzLDcgQEAgc3RhdGljIGludCBwdHdy X2VtdWxhdGVkX3VwZGF0ZSgKIAogICAgIC8qIENoZWNrIHRoZSBuZXcgUFRF LiAqLwogICAgIG5sMWUgPSBsMWVfZnJvbV9pbnRwdGUodmFsKTsKLSAgICBz d2l0Y2ggKCBnZXRfcGFnZV9mcm9tX2wxZShubDFlLCBkLCBkKSApCisgICAg c3dpdGNoICggcmV0ID0gZ2V0X3BhZ2VfZnJvbV9sMWUobmwxZSwgZCwgZCkg KQogICAgIHsKICAgICBkZWZhdWx0OgogICAgICAgICBpZiAoIGlzX3B2XzMy Yml0X2RvbWFpbihkKSAmJiAoYnl0ZXMgPT0gNCkgJiYgKHVuYWxpZ25lZF9h ZGRyICYgNCkgJiYKQEAgLTQ5OTEsOCArNTAzNyw5IEBAIHN0YXRpYyBpbnQg cHR3cl9lbXVsYXRlZF91cGRhdGUoCiAgICAgICAgIGJyZWFrOwogICAgIGNh c2UgMDoKICAgICAgICAgYnJlYWs7Ci0gICAgY2FzZSAxOgotICAgICAgICBs MWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JXKTsKKyAgICBjYXNlIF9Q QUdFX1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6CisgICAg ICAgIEFTU0VSVCghKHJldCAmIH4oX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FU VFJTKSkpOworICAgICAgICBsMWVfZmxpcF9mbGFncyhubDFlLCByZXQpOwog ICAgICAgICBicmVhazsKICAgICB9CiAKLS0tIGEveGVuL2luY2x1ZGUvYXNt LXg4Ni9wYWdlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4Ni9wYWdlLmgK QEAgLTE1Nyw2ICsxNTcsOSBAQCBzdGF0aWMgaW5saW5lIGw0X3BnZW50cnlf dCBsNGVfZnJvbV9wYWRkCiAjZGVmaW5lIGwzZV9yZW1vdmVfZmxhZ3MoeCwg ZmxhZ3MpICgoeCkubDMgJj0gfnB1dF9wdGVfZmxhZ3MoZmxhZ3MpKQogI2Rl ZmluZSBsNGVfcmVtb3ZlX2ZsYWdzKHgsIGZsYWdzKSAoKHgpLmw0ICY9IH5w dXRfcHRlX2ZsYWdzKGZsYWdzKSkKIAorLyogRmxpcCBmbGFncyBpbiBhbiBl eGlzdGluZyBMMSBQVEUuICovCisjZGVmaW5lIGwxZV9mbGlwX2ZsYWdzKHgs IGZsYWdzKSAgICAoKHgpLmwxIF49IHB1dF9wdGVfZmxhZ3MoZmxhZ3MpKQor CiAvKiBDaGVjayBpZiBhIHB0ZSdzIHBhZ2UgbWFwcGluZyBvciBzaWduaWZp Y2FudCBhY2Nlc3MgZmxhZ3MgaGF2ZSBjaGFuZ2VkLiAqLwogI2RlZmluZSBs MWVfaGFzX2NoYW5nZWQoeCx5LGZsYWdzKSBcCiAgICAgKCAhISgoKHgpLmwx IF4gKHkpLmwxKSAmICgoUEFERFJfTUFTSyZQQUdFX01BU0spfHB1dF9wdGVf ZmxhZ3MoZmxhZ3MpKSkgKQo= --=separator Content-Type: application/octet-stream; name="xsa154-4.6.patch" Content-Disposition: attachment; filename="xsa154-4.6.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xMDgwLDYgKzEwODAsMTUgQEAg bGltaXQgaXMgaWdub3JlZCBieSBYZW4uCiAKIFNwZWNpZnkgaWYgdGhlIE1N Q29uZmlnIHNwYWNlIHNob3VsZCBiZSBlbmFibGVkLgogCisjIyMgbW1pby1y ZWxheAorPiBgPSA8Ym9vbGVhbj4gfCBhbGxgCisKKz4gRGVmYXVsdDogYGZh bHNlYAorCitCeSBkZWZhdWx0LCBkb21haW5zIG1heSBub3QgY3JlYXRlIGNh Y2hlZCBtYXBwaW5ncyB0byBNTUlPIHJlZ2lvbnMuCitUaGlzIG9wdGlvbiBy ZWxheGVzIHRoZSBjaGVjayBmb3IgRG9tYWluIDAgKG9yIHdoZW4gdXNpbmcg YGFsbGAsIGFsbCBQVgorZG9tYWlucyksIHRvIHBlcm1pdCB0aGUgdXNlIG9m IGNhY2hlYWJsZSBNTUlPIG1hcHBpbmdzLgorCiAjIyMgbXNpCiA+IGA9IDxi b29sZWFuPmAKIAotLS0gYS94ZW4vYXJjaC94ODYvaHZtL210cnIuYworKysg Yi94ZW4vYXJjaC94ODYvaHZtL210cnIuYwpAQCAtODA3LDggKzgwNywxNyBA QCBpbnQgZXB0ZV9nZXRfZW50cnlfZW10KHN0cnVjdCBkb21haW4gKmQsCiAg ICAgaWYgKCB2LT5kb21haW4gIT0gZCApCiAgICAgICAgIHYgPSBkLT52Y3B1 ID8gZC0+dmNwdVswXSA6IE5VTEw7CiAKLSAgICBpZiAoICFtZm5fdmFsaWQo bWZuX3gobWZuKSkgKQorICAgIGlmICggIW1mbl92YWxpZChtZm5feChtZm4p KSB8fAorICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfcmFuZ2UobW1pb19y b19yYW5nZXMsIG1mbl94KG1mbiksCisgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBtZm5feChtZm4pICsgKDFVTCA8PCBvcmRlcikgLSAxKSAp CisgICAgeworICAgICAgICAqaXBhdCA9IDE7CiAgICAgICAgIHJldHVybiBN VFJSX1RZUEVfVU5DQUNIQUJMRTsKKyAgICB9CisKKyAgICBpZiAoIHJhbmdl c2V0X292ZXJsYXBzX3JhbmdlKG1taW9fcm9fcmFuZ2VzLCBtZm5feChtZm4p LAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgbWZuX3gobWZu KSArICgxVUwgPDwgb3JkZXIpIC0gMSkgKQorICAgICAgICByZXR1cm4gLTE7 CiAKICAgICBzd2l0Y2ggKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVhdHRy KGQsIGdmbiwgb3JkZXIsICZ0eXBlKSApCiAgICAgewotLS0gYS94ZW4vYXJj aC94ODYvbW0vcDJtLXB0LmMKKysrIGIveGVuL2FyY2gveDg2L21tL3AybS1w dC5jCkBAIC0xMDcsNiArMTA3LDggQEAgc3RhdGljIHVuc2lnbmVkIGxvbmcg cDJtX3R5cGVfdG9fZmxhZ3MocAogICAgIGNhc2UgcDJtX21taW9fZGlyZWN0 OgogICAgICAgICBpZiAoICFyYW5nZXNldF9jb250YWluc19zaW5nbGV0b24o bW1pb19yb19yYW5nZXMsIG1mbl94KG1mbikpICkKICAgICAgICAgICAgIGZs YWdzIHw9IF9QQUdFX1JXOworICAgICAgICBlbHNlCisgICAgICAgICAgICBm bGFncyB8PSBfUEFHRV9QV1Q7CiAgICAgICAgIHJldHVybiBmbGFncyB8IFAy TV9CQVNFX0ZMQUdTIHwgX1BBR0VfUENEOwogICAgIH0KIH0KLS0tIGEveGVu L2FyY2gveDg2L21tL3NoYWRvdy9tdWx0aS5jCisrKyBiL3hlbi9hcmNoL3g4 Ni9tbS9zaGFkb3cvbXVsdGkuYwpAQCAtNTE5LDYgKzUxOSw3IEBAIF9zaF9w cm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgZ2ZuX3QgdGFyZ2V0X2dm biA9IGd1ZXN0X2wxZV9nZXRfZ2ZuKGd1ZXN0X2VudHJ5KTsKICAgICB1MzIg cGFzc190aHJ1X2ZsYWdzOwogICAgIHUzMiBnZmxhZ3MsIHNmbGFnczsKKyAg ICBib29sX3QgbW1pb19tZm47CiAKICAgICAvKiBXZSBkb24ndCBzaGFkb3cg UEFFIGwzcyAqLwogICAgIEFTU0VSVChHVUVTVF9QQUdJTkdfTEVWRUxTID4g MyB8fCBsZXZlbCAhPSAzKTsKQEAgLTU1OSw3ICs1NjAsMTAgQEAgX3NoX3By b3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwKICAgICAvLyBtZm4gbWVhbnMgdGhh dCB3ZSBjYW4gbm90IHVzZWZ1bGx5IHNoYWRvdyBhbnl0aGluZywgYW5kIHNv IHdlCiAgICAgLy8gcmV0dXJuIGVhcmx5LgogICAgIC8vCi0gICAgaWYgKCAh bWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgbW1pb19tZm4gPSAhbWZuX3Zh bGlkKHRhcmdldF9tZm4pCisgICAgICAgICAgICAgICB8fCAobGV2ZWwgPT0g MQorICAgICAgICAgICAgICAgICAgICYmIHBhZ2VfZ2V0X293bmVyKG1mbl90 b19wYWdlKHRhcmdldF9tZm4pKSA9PSBkb21faW8pOworICAgIGlmICggbW1p b19tZm4KICAgICAgICAgICYmICEobGV2ZWwgPT0gMSAmJiAoIXNoYWRvd19t b2RlX3JlZmNvdW50cyhkKQogICAgICAgICAgICAgICAgICAgICAgICAgICAg ICB8fCBwMm10ID09IHAybV9tbWlvX2RpcmVjdCkpICkKICAgICB7CkBAIC01 NzcsNyArNTgxLDcgQEAgX3NoX3Byb3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwK ICAgICAgICAgICAgICAgICAgICAgICAgX1BBR0VfUlcgfCBfUEFHRV9QUkVT RU5UKTsKICAgICBpZiAoIGd1ZXN0X3N1cHBvcnRzX254KHYpICkKICAgICAg ICAgcGFzc190aHJ1X2ZsYWdzIHw9IF9QQUdFX05YX0JJVDsKLSAgICBpZiAo ICFzaGFkb3dfbW9kZV9yZWZjb3VudHMoZCkgJiYgIW1mbl92YWxpZCh0YXJn ZXRfbWZuKSApCisgICAgaWYgKCBsZXZlbCA9PSAxICYmICFzaGFkb3dfbW9k ZV9yZWZjb3VudHMoZCkgJiYgbW1pb19tZm4gKQogICAgICAgICBwYXNzX3Ro cnVfZmxhZ3MgfD0gX1BBR0VfUEFUIHwgX1BBR0VfUENEIHwgX1BBR0VfUFdU OwogICAgIHNmbGFncyA9IGdmbGFncyAmIHBhc3NfdGhydV9mbGFnczsKIApA QCAtNjc2LDEwICs2ODAsMTQgQEAgX3NoX3Byb3BhZ2F0ZShzdHJ1Y3QgdmNw dSAqdiwKICAgICB9CiAKICAgICAvKiBSZWFkLW9ubHkgbWVtb3J5ICovCi0g ICAgaWYgKCBwMm1faXNfcmVhZG9ubHkocDJtdCkgfHwKLSAgICAgICAgIChw Mm10ID09IHAybV9tbWlvX2RpcmVjdCAmJgotICAgICAgICAgIHJhbmdlc2V0 X2NvbnRhaW5zX3NpbmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuX3godGFy Z2V0X21mbikpKSApCisgICAgaWYgKCBwMm1faXNfcmVhZG9ubHkocDJtdCkg KQogICAgICAgICBzZmxhZ3MgJj0gfl9QQUdFX1JXOworICAgIGVsc2UgaWYg KCBwMm10ID09IHAybV9tbWlvX2RpcmVjdCAmJgorICAgICAgICAgICAgICBy YW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1m bl94KHRhcmdldF9tZm4pKSApCisgICAgeworICAgICAgICBzZmxhZ3MgJj0g fihfUEFHRV9SVyB8IF9QQUdFX1BBVCk7CisgICAgICAgIHNmbGFncyB8PSBf UEFHRV9QQ0QgfCBfUEFHRV9QV1Q7CisgICAgfQogCiAgICAgLy8gcHJvdGVj dCBndWVzdCBwYWdlIHRhYmxlcwogICAgIC8vCkBAIC0xMTg1LDIyICsxMTkz LDI4IEBAIHN0YXRpYyBpbnQgc2hhZG93X3NldF9sMWUoc3RydWN0IGRvbWFp bgogICAgICAgICAgJiYgIXNoX2wxZV9pc19tYWdpYyhuZXdfc2wxZSkgKQog ICAgIHsKICAgICAgICAgLyogQWJvdXQgdG8gaW5zdGFsbCBhIG5ldyByZWZl cmVuY2UgKi8KLSAgICAgICAgaWYgKCBzaGFkb3dfbW9kZV9yZWZjb3VudHMo ZCkgKSB7CisgICAgICAgIGlmICggc2hhZG93X21vZGVfcmVmY291bnRzKGQp ICkKKyAgICAgICAgeworI2RlZmluZSBQQUdFX0ZMSVBQQUJMRSAoX1BBR0Vf UlcgfCBfUEFHRV9QV1QgfCBfUEFHRV9QQ0QgfCBfUEFHRV9QQVQpCisgICAg ICAgICAgICBpbnQgcmM7CisKICAgICAgICAgICAgIFRSQUNFX1NIQURPV19Q QVRIX0ZMQUcoVFJDRV9TRkxBR19TSEFET1dfTDFfR0VUX1JFRik7Ci0gICAg ICAgICAgICBzd2l0Y2ggKCBzaGFkb3dfZ2V0X3BhZ2VfZnJvbV9sMWUobmV3 X3NsMWUsIGQsIG5ld190eXBlKSApCisgICAgICAgICAgICBzd2l0Y2ggKCBy YyA9IHNoYWRvd19nZXRfcGFnZV9mcm9tX2wxZShuZXdfc2wxZSwgZCwgbmV3 X3R5cGUpICkKICAgICAgICAgICAgIHsKICAgICAgICAgICAgIGRlZmF1bHQ6 CiAgICAgICAgICAgICAgICAgLyogRG9lc24ndCBsb29rIGxpa2UgYSBwYWdl dGFibGUuICovCiAgICAgICAgICAgICAgICAgZmxhZ3MgfD0gU0hBRE9XX1NF VF9FUlJPUjsKICAgICAgICAgICAgICAgICBuZXdfc2wxZSA9IHNoYWRvd19s MWVfZW1wdHkoKTsKICAgICAgICAgICAgICAgICBicmVhazsKLSAgICAgICAg ICAgIGNhc2UgMToKLSAgICAgICAgICAgICAgICBzaGFkb3dfbDFlX3JlbW92 ZV9mbGFncyhuZXdfc2wxZSwgX1BBR0VfUlcpOworICAgICAgICAgICAgY2Fz ZSBQQUdFX0ZMSVBQQUJMRSAmIC1QQUdFX0ZMSVBQQUJMRSAuLi4gUEFHRV9G TElQUEFCTEU6CisgICAgICAgICAgICAgICAgQVNTRVJUKCEocmMgJiB+UEFH RV9GTElQUEFCTEUpKTsKKyAgICAgICAgICAgICAgICBuZXdfc2wxZSA9IHNo YWRvd19sMWVfZmxpcF9mbGFncyhuZXdfc2wxZSwgcmMpOwogICAgICAgICAg ICAgICAgIC8qIGZhbGwgdGhyb3VnaCAqLwogICAgICAgICAgICAgY2FzZSAw OgogICAgICAgICAgICAgICAgIHNoYWRvd192cmFtX2dldF9sMWUobmV3X3Ns MWUsIHNsMWUsIHNsMW1mbiwgZCk7CiAgICAgICAgICAgICAgICAgYnJlYWs7 CiAgICAgICAgICAgICB9CisjdW5kZWYgUEFHRV9GTElQUEFCTEUKICAgICAg ICAgfQogICAgIH0KIAotLS0gYS94ZW4vYXJjaC94ODYvbW0vc2hhZG93L3R5 cGVzLmgKKysrIGIveGVuL2FyY2gveDg2L21tL3NoYWRvdy90eXBlcy5oCkBA IC05OSw2ICs5OSw5IEBAIHN0YXRpYyBpbmxpbmUgdTMyIHNoYWRvd19sNGVf Z2V0X2ZsYWdzKHMKIHN0YXRpYyBpbmxpbmUgc2hhZG93X2wxZV90CiBzaGFk b3dfbDFlX3JlbW92ZV9mbGFncyhzaGFkb3dfbDFlX3Qgc2wxZSwgdTMyIGZs YWdzKQogeyBsMWVfcmVtb3ZlX2ZsYWdzKHNsMWUsIGZsYWdzKTsgcmV0dXJu IHNsMWU7IH0KK3N0YXRpYyBpbmxpbmUgc2hhZG93X2wxZV90CitzaGFkb3df bDFlX2ZsaXBfZmxhZ3Moc2hhZG93X2wxZV90IHNsMWUsIHUzMiBmbGFncykK K3sgbDFlX2ZsaXBfZmxhZ3Moc2wxZSwgZmxhZ3MpOyByZXR1cm4gc2wxZTsg fQogCiBzdGF0aWMgaW5saW5lIHNoYWRvd19sMWVfdCBzaGFkb3dfbDFlX2Vt cHR5KHZvaWQpCiB7IHJldHVybiBsMWVfZW1wdHkoKTsgfQotLS0gYS94ZW4v YXJjaC94ODYvbW0uYworKysgYi94ZW4vYXJjaC94ODYvbW0uYwpAQCAtMTc4 LDYgKzE3OCwxOCBAQCBzdGF0aWMgdWludDMyX3QgYmFzZV9kaXNhbGxvd19t YXNrOwogICAgICAgaXNfcHZfZG9tYWluKGQpKSA/ICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAgTDFfRElTQUxMT1df TUFTSyA6IChMMV9ESVNBTExPV19NQVNLICYgflBBR0VfQ0FDSEVfQVRUUlMp KQogCitzdGF0aWMgczggX19yZWFkX21vc3RseSBvcHRfbW1pb19yZWxheDsK K3N0YXRpYyB2b2lkIF9faW5pdCBwYXJzZV9tbWlvX3JlbGF4KGNvbnN0IGNo YXIgKnMpCit7CisgICAgaWYgKCAhKnMgKQorICAgICAgICBvcHRfbW1pb19y ZWxheCA9IDE7CisgICAgZWxzZQorICAgICAgICBvcHRfbW1pb19yZWxheCA9 IHBhcnNlX2Jvb2wocyk7CisgICAgaWYgKCBvcHRfbW1pb19yZWxheCA8IDAg JiYgc3RyY21wKHMsICJhbGwiKSApCisgICAgICAgIG9wdF9tbWlvX3JlbGF4 ID0gMDsKK30KK2N1c3RvbV9wYXJhbSgibW1pby1yZWxheCIsIHBhcnNlX21t aW9fcmVsYXgpOworCiBzdGF0aWMgdm9pZCBfX2luaXQgaW5pdF9mcmFtZXRh YmxlX2NodW5rKHZvaWQgKnN0YXJ0LCB2b2lkICplbmQpCiB7CiAgICAgdW5z aWduZWQgbG9uZyBzID0gKHVuc2lnbmVkIGxvbmcpc3RhcnQ7CkBAIC03OTks MTAgKzgxMSw3IEBAIGdldF9wYWdlX2Zyb21fbDFlKAogICAgIGlmICggIW1m bl92YWxpZChtZm4pIHx8CiAgICAgICAgICAocmVhbF9wZ19vd25lciA9IHBh Z2VfZ2V0X293bmVyX2FuZF9yZWZlcmVuY2UocGFnZSkpID09IGRvbV9pbyAp CiAgICAgewotI2lmbmRlZiBOREVCVUcKLSAgICAgICAgY29uc3QgdW5zaWdu ZWQgbG9uZyAqcm9fbWFwOwotICAgICAgICB1bnNpZ25lZCBpbnQgc2VnLCBi ZGY7Ci0jZW5kaWYKKyAgICAgICAgaW50IGZsaXAgPSAwOwogCiAgICAgICAg IC8qIE9ubHkgbmVlZGVkIHRoZSByZWZlcmVuY2UgdG8gY29uZmlybSBkb21f aW8gb3duZXJzaGlwLiAqLwogICAgICAgICBpZiAoIG1mbl92YWxpZChtZm4p ICkKQEAgLTgzNiwyNCArODQ1LDU1IEBAIGdldF9wYWdlX2Zyb21fbDFlKAog ICAgICAgICAgICAgcmV0dXJuIC1FSU5WQUw7CiAgICAgICAgIH0KIAotICAg ICAgICBpZiAoICEobDFmICYgX1BBR0VfUlcpIHx8Ci0gICAgICAgICAgICAg IXJhbmdlc2V0X2NvbnRhaW5zX3NpbmdsZXRvbihtbWlvX3JvX3Jhbmdlcywg bWZuKSApCi0gICAgICAgICAgICByZXR1cm4gMDsKKyAgICAgICAgaWYgKCAh cmFuZ2VzZXRfY29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9fcmFuZ2VzLCBt Zm4pICkKKyAgICAgICAgeworICAgICAgICAgICAgLyogTU1JTyBwYWdlcyBt dXN0IG5vdCBiZSBtYXBwZWQgY2FjaGFibGUgdW5sZXNzIHJlcXVlc3RlZCBz by4gKi8KKyAgICAgICAgICAgIHN3aXRjaCAoIG9wdF9tbWlvX3JlbGF4ICkK KyAgICAgICAgICAgIHsKKyAgICAgICAgICAgIGNhc2UgMDoKKyAgICAgICAg ICAgICAgICBicmVhazsKKyAgICAgICAgICAgIGNhc2UgMToKKyAgICAgICAg ICAgICAgICBpZiAoIGlzX2hhcmR3YXJlX2RvbWFpbihsMWVfb3duZXIpICkK KyAgICAgICAgICAgIGNhc2UgLTE6CisgICAgICAgICAgICAgICAgICAgIHJl dHVybiAwOworICAgICAgICAgICAgZGVmYXVsdDoKKyAgICAgICAgICAgICAg ICBBU1NFUlRfVU5SRUFDSEFCTEUoKTsKKyAgICAgICAgICAgIH0KKyAgICAg ICAgfQorICAgICAgICBlbHNlIGlmICggbDFmICYgX1BBR0VfUlcgKQorICAg ICAgICB7CiAjaWZuZGVmIE5ERUJVRwotICAgICAgICBpZiAoICFwY2lfbW1j ZmdfZGVjb2RlKG1mbiwgJnNlZywgJmJkZikgfHwKLSAgICAgICAgICAgICAo KHJvX21hcCA9IHBjaV9nZXRfcm9fbWFwKHNlZykpICE9IE5VTEwgJiYKLSAg ICAgICAgICAgICAgdGVzdF9iaXQoYmRmLCByb19tYXApKSApCi0gICAgICAg ICAgICBwcmludGsoWEVOTE9HX0dfV0FSTklORwotICAgICAgICAgICAgICAg ICAgICJkJWQ6IEZvcmNpbmcgcmVhZC1vbmx5IGFjY2VzcyB0byBNRk4gJWx4 XG4iLAotICAgICAgICAgICAgICAgICAgIGwxZV9vd25lci0+ZG9tYWluX2lk LCBtZm4pOwotICAgICAgICBlbHNlCi0gICAgICAgICAgICByYW5nZXNldF9y ZXBvcnRfcmFuZ2VzKG1taW9fcm9fcmFuZ2VzLCAwLCB+MFVMLAotICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICBwcmludF9tbWlvX2VtdWxf cmFuZ2UsCi0gICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICYo c3RydWN0IG1taW9fZW11bF9yYW5nZV9jdHh0KXsKLSAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgLmQgPSBsMWVfb3duZXIsCi0gICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC5tZm4gPSBtZm4g fSk7CisgICAgICAgICAgICBjb25zdCB1bnNpZ25lZCBsb25nICpyb19tYXA7 CisgICAgICAgICAgICB1bnNpZ25lZCBpbnQgc2VnLCBiZGY7CisKKyAgICAg ICAgICAgIGlmICggIXBjaV9tbWNmZ19kZWNvZGUobWZuLCAmc2VnLCAmYmRm KSB8fAorICAgICAgICAgICAgICAgICAoKHJvX21hcCA9IHBjaV9nZXRfcm9f bWFwKHNlZykpICE9IE5VTEwgJiYKKyAgICAgICAgICAgICAgICAgIHRlc3Rf Yml0KGJkZiwgcm9fbWFwKSkgKQorICAgICAgICAgICAgICAgIHByaW50ayhY RU5MT0dfR19XQVJOSU5HCisgICAgICAgICAgICAgICAgICAgICAgICJkJWQ6 IEZvcmNpbmcgcmVhZC1vbmx5IGFjY2VzcyB0byBNRk4gJWx4XG4iLAorICAg ICAgICAgICAgICAgICAgICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZu KTsKKyAgICAgICAgICAgIGVsc2UKKyAgICAgICAgICAgICAgICByYW5nZXNl dF9yZXBvcnRfcmFuZ2VzKG1taW9fcm9fcmFuZ2VzLCAwLCB+MFVMLAorICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgcHJpbnRfbW1p b19lbXVsX3JhbmdlLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgJihzdHJ1Y3QgbW1pb19lbXVsX3JhbmdlX2N0eHQpeworICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC5kID0g bDFlX293bmVyLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgIC5tZm4gPSBtZm4gfSk7CiAjZW5kaWYKLSAgICAgICAgcmV0 dXJuIDE7CisgICAgICAgICAgICBmbGlwID0gX1BBR0VfUlc7CisgICAgICAg IH0KKworICAgICAgICBzd2l0Y2ggKCBsMWYgJiBQQUdFX0NBQ0hFX0FUVFJT ICkKKyAgICAgICAgeworICAgICAgICBjYXNlIDA6IC8qIFdCICovCisgICAg ICAgICAgICBmbGlwIHw9IF9QQUdFX1BXVCB8IF9QQUdFX1BDRDsKKyAgICAg ICAgICAgIGJyZWFrOworICAgICAgICBjYXNlIF9QQUdFX1BXVDogLyogV1Qg Ki8KKyAgICAgICAgY2FzZSBfUEFHRV9QV1QgfCBfUEFHRV9QQVQ6IC8qIFdQ ICovCisgICAgICAgICAgICBmbGlwIHw9IF9QQUdFX1BDRCB8IChsMWYgJiBf UEFHRV9QQVQpOworICAgICAgICAgICAgYnJlYWs7CisgICAgICAgIH0KKwor ICAgICAgICByZXR1cm4gZmxpcDsKICAgICB9CiAKICAgICBpZiAoIHVubGlr ZWx5KCAocmVhbF9wZ19vd25lciAhPSBwZ19vd25lcikgJiYKQEAgLTEyNDMs OCArMTI4Myw5IEBAIHN0YXRpYyBpbnQgYWxsb2NfbDFfdGFibGUoc3RydWN0 IHBhZ2VfaW4KICAgICAgICAgICAgICAgICBnb3RvIGZhaWw7CiAgICAgICAg ICAgICBjYXNlIDA6CiAgICAgICAgICAgICAgICAgYnJlYWs7Ci0gICAgICAg ICAgICBjYXNlIDE6Ci0gICAgICAgICAgICAgICAgbDFlX3JlbW92ZV9mbGFn cyhwbDFlW2ldLCBfUEFHRV9SVyk7CisgICAgICAgICAgICBjYXNlIF9QQUdF X1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6CisgICAgICAg ICAgICAgICAgQVNTRVJUKCEocmV0ICYgfihfUEFHRV9SVyB8IFBBR0VfQ0FD SEVfQVRUUlMpKSk7CisgICAgICAgICAgICAgICAgbDFlX2ZsaXBfZmxhZ3Mo cGwxZVtpXSwgcmV0KTsKICAgICAgICAgICAgICAgICBicmVhazsKICAgICAg ICAgICAgIH0KIApAQCAtMTc1OSw4ICsxODAwLDkgQEAgc3RhdGljIGludCBt b2RfbDFfZW50cnkobDFfcGdlbnRyeV90ICpwbAogICAgICAgICAgICAgcmV0 dXJuIC1FSU5WQUw7CiAgICAgICAgIH0KIAotICAgICAgICAvKiBGYXN0IHBh dGggZm9yIGlkZW50aWNhbCBtYXBwaW5nLCByL3cgYW5kIHByZXNlbmNlLiAq LwotICAgICAgICBpZiAoICFsMWVfaGFzX2NoYW5nZWQob2wxZSwgbmwxZSwg X1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5UKSApCisgICAgICAgIC8qIEZhc3Qg cGF0aCBmb3IgaWRlbnRpY2FsIG1hcHBpbmcsIHIvdywgcHJlc2VuY2UsIGFu ZCBjYWNoYWJpbGl0eS4gKi8KKyAgICAgICAgaWYgKCAhbDFlX2hhc19jaGFu Z2VkKG9sMWUsIG5sMWUsCisgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICBQQUdFX0NBQ0hFX0FUVFJTIHwgX1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5U KSApCiAgICAgICAgIHsKICAgICAgICAgICAgIGFkanVzdF9ndWVzdF9sMWUo bmwxZSwgcHRfZG9tKTsKICAgICAgICAgICAgIGlmICggVVBEQVRFX0VOVFJZ KGwxLCBwbDFlLCBvbDFlLCBubDFlLCBnbDFtZm4sIHB0X3ZjcHUsCkBAIC0x NzgzLDggKzE4MjUsOSBAQCBzdGF0aWMgaW50IG1vZF9sMV9lbnRyeShsMV9w Z2VudHJ5X3QgKnBsCiAgICAgICAgICAgICByZXR1cm4gcmM7CiAgICAgICAg IGNhc2UgMDoKICAgICAgICAgICAgIGJyZWFrOwotICAgICAgICBjYXNlIDE6 Ci0gICAgICAgICAgICBsMWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JX KTsKKyAgICAgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0VfUlcgfCBQQUdF X0NBQ0hFX0FUVFJTOgorICAgICAgICAgICAgQVNTRVJUKCEocmMgJiB+KF9Q QUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUykpKTsKKyAgICAgICAgICAgIGwx ZV9mbGlwX2ZsYWdzKG5sMWUsIHJjKTsKICAgICAgICAgICAgIHJjID0gMDsK ICAgICAgICAgICAgIGJyZWFrOwogICAgICAgICB9CkBAIC01MDAwLDYgKzUw NDMsNyBAQCBzdGF0aWMgaW50IHB0d3JfZW11bGF0ZWRfdXBkYXRlKAogICAg IGwxX3BnZW50cnlfdCBwdGUsIG9sMWUsIG5sMWUsICpwbDFlOwogICAgIHN0 cnVjdCB2Y3B1ICp2ID0gY3VycmVudDsKICAgICBzdHJ1Y3QgZG9tYWluICpk ID0gdi0+ZG9tYWluOworICAgIGludCByZXQ7CiAKICAgICAvKiBPbmx5IGFs bG93IG5hdHVyYWxseS1hbGlnbmVkIHN0b3JlcyB3aXRoaW4gdGhlIG9yaWdp bmFsICVjcjIgcGFnZS4gKi8KICAgICBpZiAoIHVubGlrZWx5KCgoYWRkcl5w dHdyX2N0eHQtPmNyMikgJiBQQUdFX01BU0spIHx8IChhZGRyICYgKGJ5dGVz LTEpKSkgKQpAQCAtNTA0Nyw3ICs1MDkxLDcgQEAgc3RhdGljIGludCBwdHdy X2VtdWxhdGVkX3VwZGF0ZSgKIAogICAgIC8qIENoZWNrIHRoZSBuZXcgUFRF LiAqLwogICAgIG5sMWUgPSBsMWVfZnJvbV9pbnRwdGUodmFsKTsKLSAgICBz d2l0Y2ggKCBnZXRfcGFnZV9mcm9tX2wxZShubDFlLCBkLCBkKSApCisgICAg c3dpdGNoICggcmV0ID0gZ2V0X3BhZ2VfZnJvbV9sMWUobmwxZSwgZCwgZCkg KQogICAgIHsKICAgICBkZWZhdWx0OgogICAgICAgICBpZiAoIGlzX3B2XzMy Yml0X2RvbWFpbihkKSAmJiAoYnl0ZXMgPT0gNCkgJiYgKHVuYWxpZ25lZF9h ZGRyICYgNCkgJiYKQEAgLTUwNzEsOCArNTExNSw5IEBAIHN0YXRpYyBpbnQg cHR3cl9lbXVsYXRlZF91cGRhdGUoCiAgICAgICAgIGJyZWFrOwogICAgIGNh c2UgMDoKICAgICAgICAgYnJlYWs7Ci0gICAgY2FzZSAxOgotICAgICAgICBs MWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JXKTsKKyAgICBjYXNlIF9Q QUdFX1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6CisgICAg ICAgIEFTU0VSVCghKHJldCAmIH4oX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FU VFJTKSkpOworICAgICAgICBsMWVfZmxpcF9mbGFncyhubDFlLCByZXQpOwog ICAgICAgICBicmVhazsKICAgICB9CiAKLS0tIGEveGVuL2luY2x1ZGUvYXNt LXg4Ni9wYWdlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4Ni9wYWdlLmgK QEAgLTE1Nyw2ICsxNTcsOSBAQCBzdGF0aWMgaW5saW5lIGw0X3BnZW50cnlf dCBsNGVfZnJvbV9wYWRkCiAjZGVmaW5lIGwzZV9yZW1vdmVfZmxhZ3MoeCwg ZmxhZ3MpICgoeCkubDMgJj0gfnB1dF9wdGVfZmxhZ3MoZmxhZ3MpKQogI2Rl ZmluZSBsNGVfcmVtb3ZlX2ZsYWdzKHgsIGZsYWdzKSAoKHgpLmw0ICY9IH5w dXRfcHRlX2ZsYWdzKGZsYWdzKSkKIAorLyogRmxpcCBmbGFncyBpbiBhbiBl eGlzdGluZyBMMSBQVEUuICovCisjZGVmaW5lIGwxZV9mbGlwX2ZsYWdzKHgs IGZsYWdzKSAgICAoKHgpLmwxIF49IHB1dF9wdGVfZmxhZ3MoZmxhZ3MpKQor CiAvKiBDaGVjayBpZiBhIHB0ZSdzIHBhZ2UgbWFwcGluZyBvciBzaWduaWZp Y2FudCBhY2Nlc3MgZmxhZ3MgaGF2ZSBjaGFuZ2VkLiAqLwogI2RlZmluZSBs MWVfaGFzX2NoYW5nZWQoeCx5LGZsYWdzKSBcCiAgICAgKCAhISgoKHgpLmwx IF4gKHkpLmwxKSAmICgoUEFERFJfTUFTSyZQQUdFX01BU0spfHB1dF9wdGVf ZmxhZ3MoZmxhZ3MpKSkgKQo= --=separator Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce --=separator-- From xen-announce-bounces@lists.xen.org Wed Feb 17 12:29:10 2016 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 17 Feb 2016 12:29:10 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1DM-0003cY-6j; Wed, 17 Feb 2016 12:28:16 +0000 Received: from mail6.bemta14.messagelabs.com ([193.109.254.103]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1DK-0003cM-QC; Wed, 17 Feb 2016 12:28:15 +0000 Received: from [193.109.254.147] by server-5.bemta-14.messagelabs.com id 42/EB-23366-D5764C65; Wed, 17 Feb 2016 12:28:13 +0000 X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-3.tower-27.messagelabs.com!1455712091!24210787!1 X-Originating-IP: [50.57.168.107] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 7.35.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 3165 invoked from network); 17 Feb 2016 12:28:12 -0000 Received: from 50-57-168-107.static.cloud-ips.com (HELO mail.xen.org) (50.57.168.107) by server-3.tower-27.messagelabs.com with AES256-SHA encrypted SMTP; 17 Feb 2016 12:28:12 -0000 Received: from xenbits.xenproject.org ([50.57.170.242] helo=xenbits.xen.org) by mail.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1Eo-0004L7-SL; Wed, 17 Feb 2016 12:29:46 +0000 Received: from iwj by xenbits.xen.org with local (Exim 4.84) (envelope-from ) id 1aW1D5-00063u-Tl; Wed, 17 Feb 2016 12:28:00 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Wed, 17 Feb 2016 12:28:00 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 154 (CVE-2016-2270) - x86: inconsistent cachability flags on guest mappings X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2016-2270 / XSA-154 version 3 x86: inconsistent cachability flags on guest mappings UPDATES IN VERSION 3 ==================== Clarify cumbersome Resolution wording. The patch now adds a command line option to overcome the possible performance regression. Add patch backports. Clarify origin of assertion (at start of patch description) that inconsistent cacheability is a problem only for mmio pages. Public release. ISSUE DESCRIPTION ================= Multiple mappings of the same physical page with different cachability setting can cause problems. While one category (risk of using stale data) affects only guests themselves (and hence avoiding this can be left for them to control), the other category being Machine Check exceptions can be fatal to entire hosts. According to the information we were able to gather, only mappings of MMIO pages may surface this second category, but even for them there were cases where the hypervisor did not properly enforce consistent cachability. IMPACT ====== A malicious guest administrator might be able to cause a reboot, denying service to the entire host. VULNERABLE SYSTEMS ================== All Xen versions are affected. Only x86 guests given control over some physical device can trigger this vulnerability. x86 systems are vulnerable. ARM systems are not vulnerable. The vulnerability depends on the system response to mapping the same memory with different cacheability. On some systems this is harmless; on others, depending on CPU and chipset, it may be fatal. MITIGATION ========== Not handing physical devices to guests will also avoid this issue. CREDITS ======= This issue was discovered by Jan Beulich of SUSE. RESOLUTION ========== We believe that the attached patch fixes the issue. However, no formal description of CPU behaviour in particular use cases has been provided by Intel. There has been no response from AMD. We are aware of a potential performance regression with this patch on some systems - even if no hardware passthrough is configured. This is due to the behaviour of some drivers and peripherals that is beyond the scope of this security fix. The patch adds a command line option "mmio-relax" to overcome this possible regression for Domain 0 or all para-virtual guests. Note however that enabling this workaround will reinstate the security issue these patches aim to address. xsa154.patch xen-unstable xsa154-4.6.patch Xen 4.6.x xsa154-4.5.patch Xen 4.5.x xsa154-4.4.patch Xen 4.4.x xsa154-4.3.patch Xen 4.3.x $ sha256sum xsa154* bbe7fba38ee30c00ef850fa6419c769e88b5669164d447f50b1ebbe333573152 xsa154.patch 011a4e33c0e476c52fe44253d50e01a1185948fd1b2a8e645274b25da6030d71 xsa154-4.3.patch 92d475bbc344127faa4f0183a9ccca9e975c7d24eb5772bf0a0a0a2e019144c6 xsa154-4.4.patch b13737e71f22185b94ab25c07afd521add1a7e3886326c719d5df4d42f3f87f4 xsa154-4.5.patch eec88c2a57466f83a81844cb7025f70c2b671d07a75d85487d4ed73cdabbb020 xsa154-4.6.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patch described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. However deployment of the mitigations described above is NOT permitted (except where all the affected systems and VMs are administered and used only by organisations which are members of the Xen Project Security Issues Predisclosure List). Specifically, deployment on public cloud systems is NOT permitted. This is because the configuration change would be visible to the guest, which could lead to the rediscovery of the vulnerability. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJWxGayAAoJEIP+FMlX6CvZ9KwH/3z+9b7OjgpuIsOf0giZ5y99 yKoORWxQjcosYLQRQXvH62xtz0xRng+E3p+MeUm2qPUUuHFiqxSpZOAvW61C6DQL l5KNNHlIjWB3N0YVmvgRbf3WMbeX1DCsEJEIFxZUQQs3fgGAiOfIEOwRL2FIhJ5Y wP/z59fCuWs5lHoV0iAY3gkZHDd09JspCRQq8UGAc+X5jHF6fIOhUjZCS9KRQMJ5 p69ysdMj96fY5eKqwka/EXzvKMJUsQ42u5RQoYR5FhLx1UBi2otdcdbloKNseksA 7Wbf6j8Mz9NWVhvdZtnR/CNH8m5V7d78HsnGv7zNQCiMW+wg/k53yzHcw550P4w= =5V3D -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa154.patch" Content-Disposition: attachment; filename="xsa154.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xMDg0LDYgKzEwODQsMTUgQEAg bGltaXQgaXMgaWdub3JlZCBieSBYZW4uCiAKIFNwZWNpZnkgaWYgdGhlIE1N Q29uZmlnIHNwYWNlIHNob3VsZCBiZSBlbmFibGVkLgogCisjIyMgbW1pby1y ZWxheAorPiBgPSA8Ym9vbGVhbj4gfCBhbGxgCisKKz4gRGVmYXVsdDogYGZh bHNlYAorCitCeSBkZWZhdWx0LCBkb21haW5zIG1heSBub3QgY3JlYXRlIGNh Y2hlZCBtYXBwaW5ncyB0byBNTUlPIHJlZ2lvbnMuCitUaGlzIG9wdGlvbiBy ZWxheGVzIHRoZSBjaGVjayBmb3IgRG9tYWluIDAgKG9yIHdoZW4gdXNpbmcg YGFsbGAsIGFsbCBQVgorZG9tYWlucyksIHRvIHBlcm1pdCB0aGUgdXNlIG9m IGNhY2hlYWJsZSBNTUlPIG1hcHBpbmdzLgorCiAjIyMgbXNpCiA+IGA9IDxi b29sZWFuPmAKIAotLS0gYS94ZW4vYXJjaC94ODYvaHZtL210cnIuYworKysg Yi94ZW4vYXJjaC94ODYvaHZtL210cnIuYwpAQCAtNzcwLDggKzc3MCwxNyBA QCBpbnQgZXB0ZV9nZXRfZW50cnlfZW10KHN0cnVjdCBkb21haW4gKmQsCiAg ICAgaWYgKCB2LT5kb21haW4gIT0gZCApCiAgICAgICAgIHYgPSBkLT52Y3B1 ID8gZC0+dmNwdVswXSA6IE5VTEw7CiAKLSAgICBpZiAoICFtZm5fdmFsaWQo bWZuX3gobWZuKSkgKQorICAgIGlmICggIW1mbl92YWxpZChtZm5feChtZm4p KSB8fAorICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfcmFuZ2UobW1pb19y b19yYW5nZXMsIG1mbl94KG1mbiksCisgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBtZm5feChtZm4pICsgKDFVTCA8PCBvcmRlcikgLSAxKSAp CisgICAgeworICAgICAgICAqaXBhdCA9IDE7CiAgICAgICAgIHJldHVybiBN VFJSX1RZUEVfVU5DQUNIQUJMRTsKKyAgICB9CisKKyAgICBpZiAoIHJhbmdl c2V0X292ZXJsYXBzX3JhbmdlKG1taW9fcm9fcmFuZ2VzLCBtZm5feChtZm4p LAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgbWZuX3gobWZu KSArICgxVUwgPDwgb3JkZXIpIC0gMSkgKQorICAgICAgICByZXR1cm4gLTE7 CiAKICAgICBzd2l0Y2ggKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVhdHRy KGQsIGdmbiwgb3JkZXIsICZ0eXBlKSApCiAgICAgewotLS0gYS94ZW4vYXJj aC94ODYvbW0vcDJtLXB0LmMKKysrIGIveGVuL2FyY2gveDg2L21tL3AybS1w dC5jCkBAIC0xMDksNyArMTA5LDEwIEBAIHN0YXRpYyB1bnNpZ25lZCBsb25n IHAybV90eXBlX3RvX2ZsYWdzKHAKICAgICAgICAgaWYgKCAhcmFuZ2VzZXRf Y29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9fcmFuZ2VzLCBtZm5feChtZm4p KSApCiAgICAgICAgICAgICBmbGFncyB8PSBfUEFHRV9SVzsKICAgICAgICAg ZWxzZQorICAgICAgICB7CisgICAgICAgICAgICBmbGFncyB8PSBfUEFHRV9Q V1Q7CiAgICAgICAgICAgICBBU1NFUlQoIWxldmVsKTsKKyAgICAgICAgfQog ICAgICAgICByZXR1cm4gZmxhZ3MgfCBQMk1fQkFTRV9GTEFHUyB8IF9QQUdF X1BDRDsKICAgICB9CiB9Ci0tLSBhL3hlbi9hcmNoL3g4Ni9tbS9zaGFkb3cv bXVsdGkuYworKysgYi94ZW4vYXJjaC94ODYvbW0vc2hhZG93L211bHRpLmMK QEAgLTUzNCw2ICs1MzQsNyBAQCBfc2hfcHJvcGFnYXRlKHN0cnVjdCB2Y3B1 ICp2LAogICAgIGdmbl90IHRhcmdldF9nZm4gPSBndWVzdF9sMWVfZ2V0X2dm bihndWVzdF9lbnRyeSk7CiAgICAgdTMyIHBhc3NfdGhydV9mbGFnczsKICAg ICB1MzIgZ2ZsYWdzLCBzZmxhZ3M7CisgICAgYm9vbF90IG1taW9fbWZuOwog CiAgICAgLyogV2UgZG9uJ3Qgc2hhZG93IFBBRSBsM3MgKi8KICAgICBBU1NF UlQoR1VFU1RfUEFHSU5HX0xFVkVMUyA+IDMgfHwgbGV2ZWwgIT0gMyk7CkBA IC01NzQsNyArNTc1LDEwIEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUg KnYsCiAgICAgLy8gbWZuIG1lYW5zIHRoYXQgd2UgY2FuIG5vdCB1c2VmdWxs eSBzaGFkb3cgYW55dGhpbmcsIGFuZCBzbyB3ZQogICAgIC8vIHJldHVybiBl YXJseS4KICAgICAvLwotICAgIGlmICggIW1mbl92YWxpZCh0YXJnZXRfbWZu KQorICAgIG1taW9fbWZuID0gIW1mbl92YWxpZCh0YXJnZXRfbWZuKQorICAg ICAgICAgICAgICAgfHwgKGxldmVsID09IDEKKyAgICAgICAgICAgICAgICAg ICAmJiBwYWdlX2dldF9vd25lcihtZm5fdG9fcGFnZSh0YXJnZXRfbWZuKSkg PT0gZG9tX2lvKTsKKyAgICBpZiAoIG1taW9fbWZuCiAgICAgICAgICAmJiAh KGxldmVsID09IDEgJiYgKCFzaGFkb3dfbW9kZV9yZWZjb3VudHMoZCkKICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgfHwgcDJtdCA9PSBwMm1fbW1p b19kaXJlY3QpKSApCiAgICAgewpAQCAtNTkyLDcgKzU5Niw3IEBAIF9zaF9w cm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgICAgICAgICAgICAgICAg ICAgIF9QQUdFX1JXIHwgX1BBR0VfUFJFU0VOVCk7CiAgICAgaWYgKCBndWVz dF9zdXBwb3J0c19ueCh2KSApCiAgICAgICAgIHBhc3NfdGhydV9mbGFncyB8 PSBfUEFHRV9OWF9CSVQ7Ci0gICAgaWYgKCAhc2hhZG93X21vZGVfcmVmY291 bnRzKGQpICYmICFtZm5fdmFsaWQodGFyZ2V0X21mbikgKQorICAgIGlmICgg bGV2ZWwgPT0gMSAmJiAhc2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmIG1t aW9fbWZuICkKICAgICAgICAgcGFzc190aHJ1X2ZsYWdzIHw9IF9QQUdFX1BB VCB8IF9QQUdFX1BDRCB8IF9QQUdFX1BXVDsKICAgICBzZmxhZ3MgPSBnZmxh Z3MgJiBwYXNzX3RocnVfZmxhZ3M7CiAKQEAgLTY5MSwxMCArNjk1LDE0IEBA IF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgfQogCiAgICAg LyogUmVhZC1vbmx5IG1lbW9yeSAqLwotICAgIGlmICggcDJtX2lzX3JlYWRv bmx5KHAybXQpIHx8Ci0gICAgICAgICAocDJtdCA9PSBwMm1fbW1pb19kaXJl Y3QgJiYKLSAgICAgICAgICByYW5nZXNldF9jb250YWluc19zaW5nbGV0b24o bW1pb19yb19yYW5nZXMsIG1mbl94KHRhcmdldF9tZm4pKSkgKQorICAgIGlm ICggcDJtX2lzX3JlYWRvbmx5KHAybXQpICkKICAgICAgICAgc2ZsYWdzICY9 IH5fUEFHRV9SVzsKKyAgICBlbHNlIGlmICggcDJtdCA9PSBwMm1fbW1pb19k aXJlY3QgJiYKKyAgICAgICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfc2lu Z2xldG9uKG1taW9fcm9fcmFuZ2VzLCBtZm5feCh0YXJnZXRfbWZuKSkgKQor ICAgIHsKKyAgICAgICAgc2ZsYWdzICY9IH4oX1BBR0VfUlcgfCBfUEFHRV9Q QVQpOworICAgICAgICBzZmxhZ3MgfD0gX1BBR0VfUENEIHwgX1BBR0VfUFdU OworICAgIH0KIAogICAgIC8vIHByb3RlY3QgZ3Vlc3QgcGFnZSB0YWJsZXMK ICAgICAvLwpAQCAtMTIwMCwyMiArMTIwOCwyOCBAQCBzdGF0aWMgaW50IHNo YWRvd19zZXRfbDFlKHN0cnVjdCBkb21haW4KICAgICAgICAgICYmICFzaF9s MWVfaXNfbWFnaWMobmV3X3NsMWUpICkKICAgICB7CiAgICAgICAgIC8qIEFi b3V0IHRvIGluc3RhbGwgYSBuZXcgcmVmZXJlbmNlICovCi0gICAgICAgIGlm ICggc2hhZG93X21vZGVfcmVmY291bnRzKGQpICkgeworICAgICAgICBpZiAo IHNoYWRvd19tb2RlX3JlZmNvdW50cyhkKSApCisgICAgICAgIHsKKyNkZWZp bmUgUEFHRV9GTElQUEFCTEUgKF9QQUdFX1JXIHwgX1BBR0VfUFdUIHwgX1BB R0VfUENEIHwgX1BBR0VfUEFUKQorICAgICAgICAgICAgaW50IHJjOworCiAg ICAgICAgICAgICBUUkFDRV9TSEFET1dfUEFUSF9GTEFHKFRSQ0VfU0ZMQUdf U0hBRE9XX0wxX0dFVF9SRUYpOwotICAgICAgICAgICAgc3dpdGNoICggc2hh ZG93X2dldF9wYWdlX2Zyb21fbDFlKG5ld19zbDFlLCBkLCBuZXdfdHlwZSkg KQorICAgICAgICAgICAgc3dpdGNoICggcmMgPSBzaGFkb3dfZ2V0X3BhZ2Vf ZnJvbV9sMWUobmV3X3NsMWUsIGQsIG5ld190eXBlKSApCiAgICAgICAgICAg ICB7CiAgICAgICAgICAgICBkZWZhdWx0OgogICAgICAgICAgICAgICAgIC8q IERvZXNuJ3QgbG9vayBsaWtlIGEgcGFnZXRhYmxlLiAqLwogICAgICAgICAg ICAgICAgIGZsYWdzIHw9IFNIQURPV19TRVRfRVJST1I7CiAgICAgICAgICAg ICAgICAgbmV3X3NsMWUgPSBzaGFkb3dfbDFlX2VtcHR5KCk7CiAgICAgICAg ICAgICAgICAgYnJlYWs7Ci0gICAgICAgICAgICBjYXNlIDE6Ci0gICAgICAg ICAgICAgICAgc2hhZG93X2wxZV9yZW1vdmVfZmxhZ3MobmV3X3NsMWUsIF9Q QUdFX1JXKTsKKyAgICAgICAgICAgIGNhc2UgUEFHRV9GTElQUEFCTEUgJiAt UEFHRV9GTElQUEFCTEUgLi4uIFBBR0VfRkxJUFBBQkxFOgorICAgICAgICAg ICAgICAgIEFTU0VSVCghKHJjICYgflBBR0VfRkxJUFBBQkxFKSk7CisgICAg ICAgICAgICAgICAgbmV3X3NsMWUgPSBzaGFkb3dfbDFlX2ZsaXBfZmxhZ3Mo bmV3X3NsMWUsIHJjKTsKICAgICAgICAgICAgICAgICAvKiBmYWxsIHRocm91 Z2ggKi8KICAgICAgICAgICAgIGNhc2UgMDoKICAgICAgICAgICAgICAgICBz aGFkb3dfdnJhbV9nZXRfbDFlKG5ld19zbDFlLCBzbDFlLCBzbDFtZm4sIGQp OwogICAgICAgICAgICAgICAgIGJyZWFrOwogICAgICAgICAgICAgfQorI3Vu ZGVmIFBBR0VfRkxJUFBBQkxFCiAgICAgICAgIH0KICAgICB9CiAKLS0tIGEv eGVuL2FyY2gveDg2L21tL3NoYWRvdy90eXBlcy5oCisrKyBiL3hlbi9hcmNo L3g4Ni9tbS9zaGFkb3cvdHlwZXMuaApAQCAtOTksNiArOTksOSBAQCBzdGF0 aWMgaW5saW5lIHUzMiBzaGFkb3dfbDRlX2dldF9mbGFncyhzCiBzdGF0aWMg aW5saW5lIHNoYWRvd19sMWVfdAogc2hhZG93X2wxZV9yZW1vdmVfZmxhZ3Mo c2hhZG93X2wxZV90IHNsMWUsIHUzMiBmbGFncykKIHsgbDFlX3JlbW92ZV9m bGFncyhzbDFlLCBmbGFncyk7IHJldHVybiBzbDFlOyB9CitzdGF0aWMgaW5s aW5lIHNoYWRvd19sMWVfdAorc2hhZG93X2wxZV9mbGlwX2ZsYWdzKHNoYWRv d19sMWVfdCBzbDFlLCB1MzIgZmxhZ3MpCit7IGwxZV9mbGlwX2ZsYWdzKHNs MWUsIGZsYWdzKTsgcmV0dXJuIHNsMWU7IH0KIAogc3RhdGljIGlubGluZSBz aGFkb3dfbDFlX3Qgc2hhZG93X2wxZV9lbXB0eSh2b2lkKQogeyByZXR1cm4g bDFlX2VtcHR5KCk7IH0KLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysrIGIv eGVuL2FyY2gveDg2L21tLmMKQEAgLTE3OCw2ICsxNzgsMTggQEAgc3RhdGlj IHVpbnQzMl90IGJhc2VfZGlzYWxsb3dfbWFzazsKICAgICAgIGlzX3B2X2Rv bWFpbihkKSkgPyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICBcCiAgICAgIEwxX0RJU0FMTE9XX01BU0sgOiAoTDFfRElTQUxMT1df TUFTSyAmIH5QQUdFX0NBQ0hFX0FUVFJTKSkKIAorc3RhdGljIHM4IF9fcmVh ZF9tb3N0bHkgb3B0X21taW9fcmVsYXg7CitzdGF0aWMgdm9pZCBfX2luaXQg cGFyc2VfbW1pb19yZWxheChjb25zdCBjaGFyICpzKQoreworICAgIGlmICgg ISpzICkKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSAxOworICAgIGVsc2UK KyAgICAgICAgb3B0X21taW9fcmVsYXggPSBwYXJzZV9ib29sKHMpOworICAg IGlmICggb3B0X21taW9fcmVsYXggPCAwICYmIHN0cmNtcChzLCAiYWxsIikg KQorICAgICAgICBvcHRfbW1pb19yZWxheCA9IDA7Cit9CitjdXN0b21fcGFy YW0oIm1taW8tcmVsYXgiLCBwYXJzZV9tbWlvX3JlbGF4KTsKKwogc3RhdGlj IHZvaWQgX19pbml0IGluaXRfZnJhbWV0YWJsZV9jaHVuayh2b2lkICpzdGFy dCwgdm9pZCAqZW5kKQogewogICAgIHVuc2lnbmVkIGxvbmcgcyA9ICh1bnNp Z25lZCBsb25nKXN0YXJ0OwpAQCAtODcxLDEwICs4ODMsNyBAQCBnZXRfcGFn ZV9mcm9tX2wxZSgKICAgICBpZiAoICFtZm5fdmFsaWQobWZuKSB8fAogICAg ICAgICAgKHJlYWxfcGdfb3duZXIgPSBwYWdlX2dldF9vd25lcl9hbmRfcmVm ZXJlbmNlKHBhZ2UpKSA9PSBkb21faW8gKQogICAgIHsKLSNpZm5kZWYgTkRF QlVHCi0gICAgICAgIGNvbnN0IHVuc2lnbmVkIGxvbmcgKnJvX21hcDsKLSAg ICAgICAgdW5zaWduZWQgaW50IHNlZywgYmRmOwotI2VuZGlmCisgICAgICAg IGludCBmbGlwID0gMDsKIAogICAgICAgICAvKiBPbmx5IG5lZWRlZCB0aGUg cmVmZXJlbmNlIHRvIGNvbmZpcm0gZG9tX2lvIG93bmVyc2hpcC4gKi8KICAg ICAgICAgaWYgKCBtZm5fdmFsaWQobWZuKSApCkBAIC05MDgsMjQgKzkxNyw1 NSBAQCBnZXRfcGFnZV9mcm9tX2wxZSgKICAgICAgICAgICAgIHJldHVybiAt RUlOVkFMOwogICAgICAgICB9CiAKLSAgICAgICAgaWYgKCAhKGwxZiAmIF9Q QUdFX1JXKSB8fAotICAgICAgICAgICAgICFyYW5nZXNldF9jb250YWluc19z aW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1mbikgKQotICAgICAgICAgICAg cmV0dXJuIDA7CisgICAgICAgIGlmICggIXJhbmdlc2V0X2NvbnRhaW5zX3Np bmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuKSApCisgICAgICAgIHsKKyAg ICAgICAgICAgIC8qIE1NSU8gcGFnZXMgbXVzdCBub3QgYmUgbWFwcGVkIGNh Y2hhYmxlIHVubGVzcyByZXF1ZXN0ZWQgc28uICovCisgICAgICAgICAgICBz d2l0Y2ggKCBvcHRfbW1pb19yZWxheCApCisgICAgICAgICAgICB7CisgICAg ICAgICAgICBjYXNlIDA6CisgICAgICAgICAgICAgICAgYnJlYWs7CisgICAg ICAgICAgICBjYXNlIDE6CisgICAgICAgICAgICAgICAgaWYgKCBpc19oYXJk d2FyZV9kb21haW4obDFlX293bmVyKSApCisgICAgICAgICAgICBjYXNlIC0x OgorICAgICAgICAgICAgICAgICAgICByZXR1cm4gMDsKKyAgICAgICAgICAg IGRlZmF1bHQ6CisgICAgICAgICAgICAgICAgQVNTRVJUX1VOUkVBQ0hBQkxF KCk7CisgICAgICAgICAgICB9CisgICAgICAgIH0KKyAgICAgICAgZWxzZSBp ZiAoIGwxZiAmIF9QQUdFX1JXICkKKyAgICAgICAgewogI2lmbmRlZiBOREVC VUcKLSAgICAgICAgaWYgKCAhcGNpX21tY2ZnX2RlY29kZShtZm4sICZzZWcs ICZiZGYpIHx8Ci0gICAgICAgICAgICAgKChyb19tYXAgPSBwY2lfZ2V0X3Jv X21hcChzZWcpKSAhPSBOVUxMICYmCi0gICAgICAgICAgICAgIHRlc3RfYml0 KGJkZiwgcm9fbWFwKSkgKQotICAgICAgICAgICAgcHJpbnRrKFhFTkxPR19H X1dBUk5JTkcKLSAgICAgICAgICAgICAgICAgICAiZCVkOiBGb3JjaW5nIHJl YWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxuIiwKLSAgICAgICAgICAgICAg ICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZuKTsKLSAgICAgICAgZWxz ZQotICAgICAgICAgICAgcmFuZ2VzZXRfcmVwb3J0X3JhbmdlcyhtbWlvX3Jv X3JhbmdlcywgMCwgfjBVTCwKLSAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgcHJpbnRfbW1pb19lbXVsX3JhbmdlLAotICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAmKHN0cnVjdCBtbWlvX2VtdWxfcmFu Z2VfY3R4dCl7Ci0gICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgIC5kID0gbDFlX293bmVyLAotICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAubWZuID0gbWZuIH0pOworICAgICAgICAgICAgY29u c3QgdW5zaWduZWQgbG9uZyAqcm9fbWFwOworICAgICAgICAgICAgdW5zaWdu ZWQgaW50IHNlZywgYmRmOworCisgICAgICAgICAgICBpZiAoICFwY2lfbW1j ZmdfZGVjb2RlKG1mbiwgJnNlZywgJmJkZikgfHwKKyAgICAgICAgICAgICAg ICAgKChyb19tYXAgPSBwY2lfZ2V0X3JvX21hcChzZWcpKSAhPSBOVUxMICYm CisgICAgICAgICAgICAgICAgICB0ZXN0X2JpdChiZGYsIHJvX21hcCkpICkK KyAgICAgICAgICAgICAgICBwcmludGsoWEVOTE9HX0dfV0FSTklORworICAg ICAgICAgICAgICAgICAgICAgICAiZCVkOiBGb3JjaW5nIHJlYWQtb25seSBh Y2Nlc3MgdG8gTUZOICVseFxuIiwKKyAgICAgICAgICAgICAgICAgICAgICAg bDFlX293bmVyLT5kb21haW5faWQsIG1mbik7CisgICAgICAgICAgICBlbHNl CisgICAgICAgICAgICAgICAgcmFuZ2VzZXRfcmVwb3J0X3JhbmdlcyhtbWlv X3JvX3JhbmdlcywgMCwgfjBVTCwKKyAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgIHByaW50X21taW9fZW11bF9yYW5nZSwKKyAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICYoc3RydWN0IG1t aW9fZW11bF9yYW5nZV9jdHh0KXsKKyAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAuZCA9IGwxZV9vd25lciwKKyAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAubWZuID0gbWZu IH0pOwogI2VuZGlmCi0gICAgICAgIHJldHVybiAxOworICAgICAgICAgICAg ZmxpcCA9IF9QQUdFX1JXOworICAgICAgICB9CisKKyAgICAgICAgc3dpdGNo ICggbDFmICYgUEFHRV9DQUNIRV9BVFRSUyApCisgICAgICAgIHsKKyAgICAg ICAgY2FzZSAwOiAvKiBXQiAqLworICAgICAgICAgICAgZmxpcCB8PSBfUEFH RV9QV1QgfCBfUEFHRV9QQ0Q7CisgICAgICAgICAgICBicmVhazsKKyAgICAg ICAgY2FzZSBfUEFHRV9QV1Q6IC8qIFdUICovCisgICAgICAgIGNhc2UgX1BB R0VfUFdUIHwgX1BBR0VfUEFUOiAvKiBXUCAqLworICAgICAgICAgICAgZmxp cCB8PSBfUEFHRV9QQ0QgfCAobDFmICYgX1BBR0VfUEFUKTsKKyAgICAgICAg ICAgIGJyZWFrOworICAgICAgICB9CisKKyAgICAgICAgcmV0dXJuIGZsaXA7 CiAgICAgfQogCiAgICAgaWYgKCB1bmxpa2VseSggKHJlYWxfcGdfb3duZXIg IT0gcGdfb3duZXIpICYmCkBAIC0xMzE1LDggKzEzNTUsOSBAQCBzdGF0aWMg aW50IGFsbG9jX2wxX3RhYmxlKHN0cnVjdCBwYWdlX2luCiAgICAgICAgICAg ICAgICAgZ290byBmYWlsOwogICAgICAgICAgICAgY2FzZSAwOgogICAgICAg ICAgICAgICAgIGJyZWFrOwotICAgICAgICAgICAgY2FzZSAxOgotICAgICAg ICAgICAgICAgIGwxZV9yZW1vdmVfZmxhZ3MocGwxZVtpXSwgX1BBR0VfUlcp OworICAgICAgICAgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0VfUlcgfCBQ QUdFX0NBQ0hFX0FUVFJTOgorICAgICAgICAgICAgICAgIEFTU0VSVCghKHJl dCAmIH4oX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FUVFJTKSkpOworICAgICAg ICAgICAgICAgIGwxZV9mbGlwX2ZsYWdzKHBsMWVbaV0sIHJldCk7CiAgICAg ICAgICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICB9CiAKQEAgLTE4NDks OCArMTg5MCw5IEBAIHN0YXRpYyBpbnQgbW9kX2wxX2VudHJ5KGwxX3BnZW50 cnlfdCAqcGwKICAgICAgICAgICAgIHJldHVybiAtRUlOVkFMOwogICAgICAg ICB9CiAKLSAgICAgICAgLyogRmFzdCBwYXRoIGZvciBpZGVudGljYWwgbWFw cGluZywgci93IGFuZCBwcmVzZW5jZS4gKi8KLSAgICAgICAgaWYgKCAhbDFl X2hhc19jaGFuZ2VkKG9sMWUsIG5sMWUsIF9QQUdFX1JXIHwgX1BBR0VfUFJF U0VOVCkgKQorICAgICAgICAvKiBGYXN0IHBhdGggZm9yIGlkZW50aWNhbCBt YXBwaW5nLCByL3csIHByZXNlbmNlLCBhbmQgY2FjaGFiaWxpdHkuICovCisg ICAgICAgIGlmICggIWwxZV9oYXNfY2hhbmdlZChvbDFlLCBubDFlLAorICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgUEFHRV9DQUNIRV9BVFRSUyB8 IF9QQUdFX1JXIHwgX1BBR0VfUFJFU0VOVCkgKQogICAgICAgICB7CiAgICAg ICAgICAgICBhZGp1c3RfZ3Vlc3RfbDFlKG5sMWUsIHB0X2RvbSk7CiAgICAg ICAgICAgICBpZiAoIFVQREFURV9FTlRSWShsMSwgcGwxZSwgb2wxZSwgbmwx ZSwgZ2wxbWZuLCBwdF92Y3B1LApAQCAtMTg3Myw4ICsxOTE1LDkgQEAgc3Rh dGljIGludCBtb2RfbDFfZW50cnkobDFfcGdlbnRyeV90ICpwbAogICAgICAg ICAgICAgcmV0dXJuIHJjOwogICAgICAgICBjYXNlIDA6CiAgICAgICAgICAg ICBicmVhazsKLSAgICAgICAgY2FzZSAxOgotICAgICAgICAgICAgbDFlX3Jl bW92ZV9mbGFncyhubDFlLCBfUEFHRV9SVyk7CisgICAgICAgIGNhc2UgX1BB R0VfUlcgLi4uIF9QQUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUzoKKyAgICAg ICAgICAgIEFTU0VSVCghKHJjICYgfihfUEFHRV9SVyB8IFBBR0VfQ0FDSEVf QVRUUlMpKSk7CisgICAgICAgICAgICBsMWVfZmxpcF9mbGFncyhubDFlLCBy Yyk7CiAgICAgICAgICAgICByYyA9IDA7CiAgICAgICAgICAgICBicmVhazsK ICAgICAgICAgfQpAQCAtNTEwOSw2ICs1MTUyLDcgQEAgc3RhdGljIGludCBw dHdyX2VtdWxhdGVkX3VwZGF0ZSgKICAgICBsMV9wZ2VudHJ5X3QgcHRlLCBv bDFlLCBubDFlLCAqcGwxZTsKICAgICBzdHJ1Y3QgdmNwdSAqdiA9IGN1cnJl bnQ7CiAgICAgc3RydWN0IGRvbWFpbiAqZCA9IHYtPmRvbWFpbjsKKyAgICBp bnQgcmV0OwogCiAgICAgLyogT25seSBhbGxvdyBuYXR1cmFsbHktYWxpZ25l ZCBzdG9yZXMgd2l0aGluIHRoZSBvcmlnaW5hbCAlY3IyIHBhZ2UuICovCiAg ICAgaWYgKCB1bmxpa2VseSgoKGFkZHJecHR3cl9jdHh0LT5jcjIpICYgUEFH RV9NQVNLKSB8fCAoYWRkciAmIChieXRlcy0xKSkpICkKQEAgLTUxNTYsNyAr NTIwMCw3IEBAIHN0YXRpYyBpbnQgcHR3cl9lbXVsYXRlZF91cGRhdGUoCiAK ICAgICAvKiBDaGVjayB0aGUgbmV3IFBURS4gKi8KICAgICBubDFlID0gbDFl X2Zyb21faW50cHRlKHZhbCk7Ci0gICAgc3dpdGNoICggZ2V0X3BhZ2VfZnJv bV9sMWUobmwxZSwgZCwgZCkgKQorICAgIHN3aXRjaCAoIHJldCA9IGdldF9w YWdlX2Zyb21fbDFlKG5sMWUsIGQsIGQpICkKICAgICB7CiAgICAgZGVmYXVs dDoKICAgICAgICAgaWYgKCBpc19wdl8zMmJpdF9kb21haW4oZCkgJiYgKGJ5 dGVzID09IDQpICYmICh1bmFsaWduZWRfYWRkciAmIDQpICYmCkBAIC01MTgw LDggKzUyMjQsOSBAQCBzdGF0aWMgaW50IHB0d3JfZW11bGF0ZWRfdXBkYXRl KAogICAgICAgICBicmVhazsKICAgICBjYXNlIDA6CiAgICAgICAgIGJyZWFr OwotICAgIGNhc2UgMToKLSAgICAgICAgbDFlX3JlbW92ZV9mbGFncyhubDFl LCBfUEFHRV9SVyk7CisgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0VfUlcg fCBQQUdFX0NBQ0hFX0FUVFJTOgorICAgICAgICBBU1NFUlQoIShyZXQgJiB+ KF9QQUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUykpKTsKKyAgICAgICAgbDFl X2ZsaXBfZmxhZ3MobmwxZSwgcmV0KTsKICAgICAgICAgYnJlYWs7CiAgICAg fQogCi0tLSBhL3hlbi9pbmNsdWRlL2FzbS14ODYvcGFnZS5oCisrKyBiL3hl bi9pbmNsdWRlL2FzbS14ODYvcGFnZS5oCkBAIC0xNTcsNiArMTU3LDkgQEAg c3RhdGljIGlubGluZSBsNF9wZ2VudHJ5X3QgbDRlX2Zyb21fcGFkZAogI2Rl ZmluZSBsM2VfcmVtb3ZlX2ZsYWdzKHgsIGZsYWdzKSAoKHgpLmwzICY9IH5w dXRfcHRlX2ZsYWdzKGZsYWdzKSkKICNkZWZpbmUgbDRlX3JlbW92ZV9mbGFn cyh4LCBmbGFncykgKCh4KS5sNCAmPSB+cHV0X3B0ZV9mbGFncyhmbGFncykp CiAKKy8qIEZsaXAgZmxhZ3MgaW4gYW4gZXhpc3RpbmcgTDEgUFRFLiAqLwor I2RlZmluZSBsMWVfZmxpcF9mbGFncyh4LCBmbGFncykgICAgKCh4KS5sMSBe PSBwdXRfcHRlX2ZsYWdzKGZsYWdzKSkKKwogLyogQ2hlY2sgaWYgYSBwdGUn cyBwYWdlIG1hcHBpbmcgb3Igc2lnbmlmaWNhbnQgYWNjZXNzIGZsYWdzIGhh dmUgY2hhbmdlZC4gKi8KICNkZWZpbmUgbDFlX2hhc19jaGFuZ2VkKHgseSxm bGFncykgXAogICAgICggISEoKCh4KS5sMSBeICh5KS5sMSkgJiAoKFBBRERS X01BU0smUEFHRV9NQVNLKXxwdXRfcHRlX2ZsYWdzKGZsYWdzKSkpICkK --=separator Content-Type: application/octet-stream; name="xsa154-4.3.patch" Content-Disposition: attachment; filename="xsa154-4.3.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC02NTYsNiArNjU2LDE1IEBAIGxp bWl0IGlzIGlnbm9yZWQgYnkgWGVuLgogCiBTcGVjaWZ5IGlmIHRoZSBNTUNv bmZpZyBzcGFjZSBzaG91bGQgYmUgZW5hYmxlZC4KIAorIyMjIG1taW8tcmVs YXgKKz4gYD0gPGJvb2xlYW4+IHwgYWxsYAorCis+IERlZmF1bHQ6IGBmYWxz ZWAKKworQnkgZGVmYXVsdCwgZG9tYWlucyBtYXkgbm90IGNyZWF0ZSBjYWNo ZWQgbWFwcGluZ3MgdG8gTU1JTyByZWdpb25zLgorVGhpcyBvcHRpb24gcmVs YXhlcyB0aGUgY2hlY2sgZm9yIERvbWFpbiAwIChvciB3aGVuIHVzaW5nIGBh bGxgLCBhbGwgUFYKK2RvbWFpbnMpLCB0byBwZXJtaXQgdGhlIHVzZSBvZiBj YWNoZWFibGUgTU1JTyBtYXBwaW5ncy4KKwogIyMjIG1zaQogPiBgPSA8Ym9v bGVhbj5gCiAKLS0tIGEveGVuL2FyY2gveDg2L2h2bS9tdHJyLmMKKysrIGIv eGVuL2FyY2gveDg2L2h2bS9tdHJyLmMKQEAgLTY5Myw4ICs2OTMsMTIgQEAg dWludDhfdCBlcHRlX2dldF9lbnRyeV9lbXQoc3RydWN0IGRvbWFpbgogICAg IGlmICggdi0+ZG9tYWluICE9IGQgKQogICAgICAgICB2ID0gZC0+dmNwdSA/ IGQtPnZjcHVbMF0gOiBOVUxMOwogCi0gICAgaWYgKCAhbWZuX3ZhbGlkKG1m bl94KG1mbikpICkKKyAgICBpZiAoICFtZm5fdmFsaWQobWZuX3gobWZuKSkg fHwKKyAgICAgICAgIHJhbmdlc2V0X2NvbnRhaW5zX3NpbmdsZXRvbihtbWlv X3JvX3JhbmdlcywgbWZuX3gobWZuKSkgKQorICAgIHsKKyAgICAgICAgKmlw YXQgPSAxOwogICAgICAgICByZXR1cm4gTVRSUl9UWVBFX1VOQ0FDSEFCTEU7 CisgICAgfQogCiAgICAgaWYgKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVh dHRyKGQsIGdmbiwgJnR5cGUpICkKICAgICAgICAgcmV0dXJuIHR5cGU7Ci0t LSBhL3hlbi9hcmNoL3g4Ni9tbS9wMm0tcHQuYworKysgYi94ZW4vYXJjaC94 ODYvbW0vcDJtLXB0LmMKQEAgLTkzLDYgKzkzLDggQEAgc3RhdGljIHVuc2ln bmVkIGxvbmcgcDJtX3R5cGVfdG9fZmxhZ3MocAogICAgIGNhc2UgcDJtX21t aW9fZGlyZWN0OgogICAgICAgICBpZiAoICFyYW5nZXNldF9jb250YWluc19z aW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1mbl94KG1mbikpICkKICAgICAg ICAgICAgIGZsYWdzIHw9IF9QQUdFX1JXOworICAgICAgICBlbHNlCisgICAg ICAgICAgICBmbGFncyB8PSBfUEFHRV9QV1Q7CiAgICAgICAgIHJldHVybiBm bGFncyB8IFAyTV9CQVNFX0ZMQUdTIHwgX1BBR0VfUENEOwogICAgIH0KIH0K LS0tIGEveGVuL2FyY2gveDg2L21tL3NoYWRvdy9tdWx0aS5jCisrKyBiL3hl bi9hcmNoL3g4Ni9tbS9zaGFkb3cvbXVsdGkuYwpAQCAtNTIxLDYgKzUyMSw3 IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgZ2ZuX3Qg dGFyZ2V0X2dmbiA9IGd1ZXN0X2wxZV9nZXRfZ2ZuKGd1ZXN0X2VudHJ5KTsK ICAgICB1MzIgcGFzc190aHJ1X2ZsYWdzOwogICAgIHUzMiBnZmxhZ3MsIHNm bGFnczsKKyAgICBib29sX3QgbW1pb19tZm47CiAKICAgICAvKiBXZSBkb24n dCBzaGFkb3cgUEFFIGwzcyAqLwogICAgIEFTU0VSVChHVUVTVF9QQUdJTkdf TEVWRUxTID4gMyB8fCBsZXZlbCAhPSAzKTsKQEAgLTU2MSw3ICs1NjIsMTAg QEAgX3NoX3Byb3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwKICAgICAvLyBtZm4g bWVhbnMgdGhhdCB3ZSBjYW4gbm90IHVzZWZ1bGx5IHNoYWRvdyBhbnl0aGlu ZywgYW5kIHNvIHdlCiAgICAgLy8gcmV0dXJuIGVhcmx5LgogICAgIC8vCi0g ICAgaWYgKCAhbWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgbW1pb19tZm4g PSAhbWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgICAgICAgICAgICB8fCAo bGV2ZWwgPT0gMQorICAgICAgICAgICAgICAgICAgICYmIHBhZ2VfZ2V0X293 bmVyKG1mbl90b19wYWdlKHRhcmdldF9tZm4pKSA9PSBkb21faW8pOworICAg IGlmICggbW1pb19tZm4KICAgICAgICAgICYmICEobGV2ZWwgPT0gMSAmJiAo IXNoYWRvd19tb2RlX3JlZmNvdW50cyhkKSAKICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgfHwgcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QpKSApCiAg ICAgewpAQCAtNTc5LDcgKzU4Myw3IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0 IHZjcHUgKnYsCiAgICAgICAgICAgICAgICAgICAgICAgIF9QQUdFX1JXIHwg X1BBR0VfUFJFU0VOVCk7CiAgICAgaWYgKCBndWVzdF9zdXBwb3J0c19ueCh2 KSApCiAgICAgICAgIHBhc3NfdGhydV9mbGFncyB8PSBfUEFHRV9OWF9CSVQ7 Ci0gICAgaWYgKCAhc2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmICFtZm5f dmFsaWQodGFyZ2V0X21mbikgKQorICAgIGlmICggbGV2ZWwgPT0gMSAmJiAh c2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmIG1taW9fbWZuICkKICAgICAg ICAgcGFzc190aHJ1X2ZsYWdzIHw9IF9QQUdFX1BBVCB8IF9QQUdFX1BDRCB8 IF9QQUdFX1BXVDsKICAgICBzZmxhZ3MgPSBnZmxhZ3MgJiBwYXNzX3RocnVf ZmxhZ3M7CiAKQEAgLTY3NiwxMCArNjgwLDE0IEBAIF9zaF9wcm9wYWdhdGUo c3RydWN0IHZjcHUgKnYsCiAgICAgfQogCiAgICAgLyogUmVhZC1vbmx5IG1l bW9yeSAqLwotICAgIGlmICggcDJtX2lzX3JlYWRvbmx5KHAybXQpIHx8Ci0g ICAgICAgICAocDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKLSAgICAgICAg ICByYW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMs IG1mbl94KHRhcmdldF9tZm4pKSkgKQorICAgIGlmICggcDJtX2lzX3JlYWRv bmx5KHAybXQpICkKICAgICAgICAgc2ZsYWdzICY9IH5fUEFHRV9SVzsKKyAg ICBlbHNlIGlmICggcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKKyAgICAg ICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9f cmFuZ2VzLCBtZm5feCh0YXJnZXRfbWZuKSkgKQorICAgIHsKKyAgICAgICAg c2ZsYWdzICY9IH4oX1BBR0VfUlcgfCBfUEFHRV9QQVQpOworICAgICAgICBz ZmxhZ3MgfD0gX1BBR0VfUENEIHwgX1BBR0VfUFdUOworICAgIH0KICAgICAK ICAgICAvLyBwcm90ZWN0IGd1ZXN0IHBhZ2UgdGFibGVzCiAgICAgLy8KQEAg LTEyMDEsMjIgKzEyMDksMjggQEAgc3RhdGljIGludCBzaGFkb3dfc2V0X2wx ZShzdHJ1Y3QgdmNwdSAqdgogICAgICAgICAgJiYgIXNoX2wxZV9pc19tYWdp YyhuZXdfc2wxZSkgKSAKICAgICB7CiAgICAgICAgIC8qIEFib3V0IHRvIGlu c3RhbGwgYSBuZXcgcmVmZXJlbmNlICovICAgICAgICAKLSAgICAgICAgaWYg KCBzaGFkb3dfbW9kZV9yZWZjb3VudHMoZCkgKSB7CisgICAgICAgIGlmICgg c2hhZG93X21vZGVfcmVmY291bnRzKGQpICkKKyAgICAgICAgeworI2RlZmlu ZSBQQUdFX0ZMSVBQQUJMRSAoX1BBR0VfUlcgfCBfUEFHRV9QV1QgfCBfUEFH RV9QQ0QgfCBfUEFHRV9QQVQpCisgICAgICAgICAgICBpbnQgcmM7CisKICAg ICAgICAgICAgIFRSQUNFX1NIQURPV19QQVRIX0ZMQUcoVFJDRV9TRkxBR19T SEFET1dfTDFfR0VUX1JFRik7Ci0gICAgICAgICAgICBzd2l0Y2ggKCBzaGFk b3dfZ2V0X3BhZ2VfZnJvbV9sMWUobmV3X3NsMWUsIGQsIG5ld190eXBlKSAp CisgICAgICAgICAgICBzd2l0Y2ggKCByYyA9IHNoYWRvd19nZXRfcGFnZV9m cm9tX2wxZShuZXdfc2wxZSwgZCwgbmV3X3R5cGUpICkKICAgICAgICAgICAg IHsKICAgICAgICAgICAgIGRlZmF1bHQ6CiAgICAgICAgICAgICAgICAgLyog RG9lc24ndCBsb29rIGxpa2UgYSBwYWdldGFibGUuICovCiAgICAgICAgICAg ICAgICAgZmxhZ3MgfD0gU0hBRE9XX1NFVF9FUlJPUjsKICAgICAgICAgICAg ICAgICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZW1wdHkoKTsKICAgICAgICAg ICAgICAgICBicmVhazsKLSAgICAgICAgICAgIGNhc2UgMToKLSAgICAgICAg ICAgICAgICBzaGFkb3dfbDFlX3JlbW92ZV9mbGFncyhuZXdfc2wxZSwgX1BB R0VfUlcpOworICAgICAgICAgICAgY2FzZSBQQUdFX0ZMSVBQQUJMRSAmIC1Q QUdFX0ZMSVBQQUJMRSAuLi4gUEFHRV9GTElQUEFCTEU6CisgICAgICAgICAg ICAgICAgQVNTRVJUKCEocmMgJiB+UEFHRV9GTElQUEFCTEUpKTsKKyAgICAg ICAgICAgICAgICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZmxpcF9mbGFncyhu ZXdfc2wxZSwgcmMpOwogICAgICAgICAgICAgICAgIC8qIGZhbGwgdGhyb3Vn aCAqLwogICAgICAgICAgICAgY2FzZSAwOgogICAgICAgICAgICAgICAgIHNo YWRvd192cmFtX2dldF9sMWUobmV3X3NsMWUsIHNsMWUsIHNsMW1mbiwgZCk7 CiAgICAgICAgICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICB9CisjdW5k ZWYgUEFHRV9GTElQUEFCTEUKICAgICAgICAgfQogICAgIH0gCiAKLS0tIGEv eGVuL2FyY2gveDg2L21tL3NoYWRvdy90eXBlcy5oCisrKyBiL3hlbi9hcmNo L3g4Ni9tbS9zaGFkb3cvdHlwZXMuaApAQCAtMTAwLDYgKzEwMCw5IEBAIHN0 YXRpYyBpbmxpbmUgdTMyIHNoYWRvd19sNGVfZ2V0X2ZsYWdzKHMKIHN0YXRp YyBpbmxpbmUgc2hhZG93X2wxZV90CiBzaGFkb3dfbDFlX3JlbW92ZV9mbGFn cyhzaGFkb3dfbDFlX3Qgc2wxZSwgdTMyIGZsYWdzKQogeyBsMWVfcmVtb3Zl X2ZsYWdzKHNsMWUsIGZsYWdzKTsgcmV0dXJuIHNsMWU7IH0KK3N0YXRpYyBp bmxpbmUgc2hhZG93X2wxZV90CitzaGFkb3dfbDFlX2ZsaXBfZmxhZ3Moc2hh ZG93X2wxZV90IHNsMWUsIHUzMiBmbGFncykKK3sgbDFlX2ZsaXBfZmxhZ3Mo c2wxZSwgZmxhZ3MpOyByZXR1cm4gc2wxZTsgfQogCiBzdGF0aWMgaW5saW5l IHNoYWRvd19sMWVfdCBzaGFkb3dfbDFlX2VtcHR5KHZvaWQpIAogeyByZXR1 cm4gbDFlX2VtcHR5KCk7IH0KLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysr IGIveGVuL2FyY2gveDg2L21tLmMKQEAgLTE4OCw2ICsxODgsMTggQEAgc3Rh dGljIHVpbnQzMl90IGJhc2VfZGlzYWxsb3dfbWFzazsKICAgICAgICFpc19o dm1fZG9tYWluKGQpKSA/ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBcCiAgICAgIEwxX0RJU0FMTE9XX01BU0sgOiAoTDFfRElTQUxM T1dfTUFTSyAmIH5QQUdFX0NBQ0hFX0FUVFJTKSkKIAorc3RhdGljIHM4IF9f cmVhZF9tb3N0bHkgb3B0X21taW9fcmVsYXg7CitzdGF0aWMgdm9pZCBfX2lu aXQgcGFyc2VfbW1pb19yZWxheChjb25zdCBjaGFyICpzKQoreworICAgIGlm ICggISpzICkKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSAxOworICAgIGVs c2UKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSBwYXJzZV9ib29sKHMpOwor ICAgIGlmICggb3B0X21taW9fcmVsYXggPCAwICYmIHN0cmNtcChzLCAiYWxs IikgKQorICAgICAgICBvcHRfbW1pb19yZWxheCA9IDA7Cit9CitjdXN0b21f cGFyYW0oIm1taW8tcmVsYXgiLCBwYXJzZV9tbWlvX3JlbGF4KTsKKwogc3Rh dGljIHZvaWQgX19pbml0IGluaXRfZnJhbWV0YWJsZV9jaHVuayh2b2lkICpz dGFydCwgdm9pZCAqZW5kKQogewogICAgIHVuc2lnbmVkIGxvbmcgcyA9ICh1 bnNpZ25lZCBsb25nKXN0YXJ0OwpAQCAtNzczLDYgKzc4NSw4IEBAIGdldF9w YWdlX2Zyb21fbDFlKAogICAgIGlmICggIW1mbl92YWxpZChtZm4pIHx8CiAg ICAgICAgICAocmVhbF9wZ19vd25lciA9IHBhZ2VfZ2V0X293bmVyX2FuZF9y ZWZlcmVuY2UocGFnZSkpID09IGRvbV9pbyApCiAgICAgeworICAgICAgICBp bnQgZmxpcCA9IDA7CisKICAgICAgICAgLyogT25seSBuZWVkZWQgdGhlIHJl ZmVyZW5jZSB0byBjb25maXJtIGRvbV9pbyBvd25lcnNoaXAuICovCiAgICAg ICAgIGlmICggbWZuX3ZhbGlkKG1mbikgKQogICAgICAgICAgICAgcHV0X3Bh Z2UocGFnZSk7CkBAIC04MDUsMTMgKzgxOSw0MSBAQCBnZXRfcGFnZV9mcm9t X2wxZSgKICAgICAgICAgICAgIHJldHVybiAtRUlOVkFMOwogICAgICAgICB9 CiAKLSAgICAgICAgaWYgKCAhKGwxZiAmIF9QQUdFX1JXKSB8fAotICAgICAg ICAgICAgICFyYW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19y YW5nZXMsIG1mbikgKQotICAgICAgICAgICAgcmV0dXJuIDA7Ci0gICAgICAg IGRwcmludGsoWEVOTE9HX0dfV0FSTklORywKLSAgICAgICAgICAgICAgICAi ZCVkOiBGb3JjaW5nIHJlYWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxuIiwK LSAgICAgICAgICAgICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZuKTsK LSAgICAgICAgcmV0dXJuIDE7CisgICAgICAgIGlmICggIXJhbmdlc2V0X2Nv bnRhaW5zX3NpbmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuKSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIC8qIE1NSU8gcGFnZXMgbXVzdCBub3QgYmUg bWFwcGVkIGNhY2hhYmxlIHVubGVzcyByZXF1ZXN0ZWQgc28uICovCisgICAg ICAgICAgICBzd2l0Y2ggKCBvcHRfbW1pb19yZWxheCApCisgICAgICAgICAg ICB7CisgICAgICAgICAgICBjYXNlIDA6CisgICAgICAgICAgICAgICAgYnJl YWs7CisgICAgICAgICAgICBjYXNlIDE6CisgICAgICAgICAgICAgICAgaWYg KCBpc19oYXJkd2FyZV9kb21haW4obDFlX293bmVyKSApCisgICAgICAgICAg ICBjYXNlIC0xOgorICAgICAgICAgICAgICAgICAgICByZXR1cm4gMDsKKyAg ICAgICAgICAgIGRlZmF1bHQ6CisgICAgICAgICAgICAgICAgQVNTRVJUKDAp OworICAgICAgICAgICAgfQorICAgICAgICB9CisgICAgICAgIGVsc2UgaWYg KCBsMWYgJiBfUEFHRV9SVyApCisgICAgICAgIHsKKyAgICAgICAgICAgIGRw cmludGsoWEVOTE9HX0dfV0FSTklORywKKyAgICAgICAgICAgICAgICAgICAg ImQlZDogRm9yY2luZyByZWFkLW9ubHkgYWNjZXNzIHRvIE1GTiAlbHhcbiIs CisgICAgICAgICAgICAgICAgICAgIGwxZV9vd25lci0+ZG9tYWluX2lkLCBt Zm4pOworICAgICAgICAgICAgZmxpcCA9IF9QQUdFX1JXOworICAgICAgICB9 CisKKyAgICAgICAgc3dpdGNoICggbDFmICYgUEFHRV9DQUNIRV9BVFRSUyAp CisgICAgICAgIHsKKyAgICAgICAgY2FzZSAwOiAvKiBXQiAqLworICAgICAg ICAgICAgZmxpcCB8PSBfUEFHRV9QV1QgfCBfUEFHRV9QQ0Q7CisgICAgICAg ICAgICBicmVhazsKKyAgICAgICAgY2FzZSBfUEFHRV9QV1Q6IC8qIFdUICov CisgICAgICAgIGNhc2UgX1BBR0VfUFdUIHwgX1BBR0VfUEFUOiAvKiBXUCAq LworICAgICAgICAgICAgZmxpcCB8PSBfUEFHRV9QQ0QgfCAobDFmICYgX1BB R0VfUEFUKTsKKyAgICAgICAgICAgIGJyZWFrOworICAgICAgICB9CisKKyAg ICAgICAgcmV0dXJuIGZsaXA7CiAgICAgfQogCiAgICAgaWYgKCB1bmxpa2Vs eSggKHJlYWxfcGdfb3duZXIgIT0gcGdfb3duZXIpICYmCkBAIC0xMjEwLDgg KzEyNTIsOSBAQCBzdGF0aWMgaW50IGFsbG9jX2wxX3RhYmxlKHN0cnVjdCBw YWdlX2luCiAgICAgICAgICAgICAgICAgZ290byBmYWlsOwogICAgICAgICAg ICAgY2FzZSAwOgogICAgICAgICAgICAgICAgIGJyZWFrOwotICAgICAgICAg ICAgY2FzZSAxOgotICAgICAgICAgICAgICAgIGwxZV9yZW1vdmVfZmxhZ3Mo cGwxZVtpXSwgX1BBR0VfUlcpOworICAgICAgICAgICAgY2FzZSBfUEFHRV9S VyAuLi4gX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FUVFJTOgorICAgICAgICAg ICAgICAgIEFTU0VSVCghKHJldCAmIH4oX1BBR0VfUlcgfCBQQUdFX0NBQ0hF X0FUVFJTKSkpOworICAgICAgICAgICAgICAgIGwxZV9mbGlwX2ZsYWdzKHBs MWVbaV0sIHJldCk7CiAgICAgICAgICAgICAgICAgYnJlYWs7CiAgICAgICAg ICAgICB9CiAKQEAgLTE3MDYsOCArMTc0OSw5IEBAIHN0YXRpYyBpbnQgbW9k X2wxX2VudHJ5KGwxX3BnZW50cnlfdCAqcGwKICAgICAgICAgICAgIHJldHVy biAtRUlOVkFMOwogICAgICAgICB9CiAKLSAgICAgICAgLyogRmFzdCBwYXRo IGZvciBpZGVudGljYWwgbWFwcGluZywgci93IGFuZCBwcmVzZW5jZS4gKi8K LSAgICAgICAgaWYgKCAhbDFlX2hhc19jaGFuZ2VkKG9sMWUsIG5sMWUsIF9Q QUdFX1JXIHwgX1BBR0VfUFJFU0VOVCkgKQorICAgICAgICAvKiBGYXN0IHBh dGggZm9yIGlkZW50aWNhbCBtYXBwaW5nLCByL3csIHByZXNlbmNlLCBhbmQg Y2FjaGFiaWxpdHkuICovCisgICAgICAgIGlmICggIWwxZV9oYXNfY2hhbmdl ZChvbDFlLCBubDFlLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg UEFHRV9DQUNIRV9BVFRSUyB8IF9QQUdFX1JXIHwgX1BBR0VfUFJFU0VOVCkg KQogICAgICAgICB7CiAgICAgICAgICAgICBhZGp1c3RfZ3Vlc3RfbDFlKG5s MWUsIHB0X2RvbSk7CiAgICAgICAgICAgICBpZiAoIFVQREFURV9FTlRSWShs MSwgcGwxZSwgb2wxZSwgbmwxZSwgZ2wxbWZuLCBwdF92Y3B1LApAQCAtMTcz MCw4ICsxNzc0LDkgQEAgc3RhdGljIGludCBtb2RfbDFfZW50cnkobDFfcGdl bnRyeV90ICpwbAogICAgICAgICAgICAgcmV0dXJuIHJjOwogICAgICAgICBj YXNlIDA6CiAgICAgICAgICAgICBicmVhazsKLSAgICAgICAgY2FzZSAxOgot ICAgICAgICAgICAgbDFlX3JlbW92ZV9mbGFncyhubDFlLCBfUEFHRV9SVyk7 CisgICAgICAgIGNhc2UgX1BBR0VfUlcgLi4uIF9QQUdFX1JXIHwgUEFHRV9D QUNIRV9BVFRSUzoKKyAgICAgICAgICAgIEFTU0VSVCghKHJjICYgfihfUEFH RV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlMpKSk7CisgICAgICAgICAgICBsMWVf ZmxpcF9mbGFncyhubDFlLCByYyk7CiAgICAgICAgICAgICByYyA9IDA7CiAg ICAgICAgICAgICBicmVhazsKICAgICAgICAgfQpAQCAtNTAxMCw2ICs1MDU1 LDcgQEAgc3RhdGljIGludCBwdHdyX2VtdWxhdGVkX3VwZGF0ZSgKICAgICBs MV9wZ2VudHJ5X3QgcHRlLCBvbDFlLCBubDFlLCAqcGwxZTsKICAgICBzdHJ1 Y3QgdmNwdSAqdiA9IGN1cnJlbnQ7CiAgICAgc3RydWN0IGRvbWFpbiAqZCA9 IHYtPmRvbWFpbjsKKyAgICBpbnQgcmV0OwogCiAgICAgLyogT25seSBhbGxv dyBuYXR1cmFsbHktYWxpZ25lZCBzdG9yZXMgd2l0aGluIHRoZSBvcmlnaW5h bCAlY3IyIHBhZ2UuICovCiAgICAgaWYgKCB1bmxpa2VseSgoKGFkZHJecHR3 cl9jdHh0LT5jcjIpICYgUEFHRV9NQVNLKSB8fCAoYWRkciAmIChieXRlcy0x KSkpICkKQEAgLTUwNTcsNyArNTEwMyw3IEBAIHN0YXRpYyBpbnQgcHR3cl9l bXVsYXRlZF91cGRhdGUoCiAKICAgICAvKiBDaGVjayB0aGUgbmV3IFBURS4g Ki8KICAgICBubDFlID0gbDFlX2Zyb21faW50cHRlKHZhbCk7Ci0gICAgc3dp dGNoICggZ2V0X3BhZ2VfZnJvbV9sMWUobmwxZSwgZCwgZCkgKQorICAgIHN3 aXRjaCAoIHJldCA9IGdldF9wYWdlX2Zyb21fbDFlKG5sMWUsIGQsIGQpICkK ICAgICB7CiAgICAgZGVmYXVsdDoKICAgICAgICAgaWYgKCBpc19wdl8zMmJp dF9kb21haW4oZCkgJiYgKGJ5dGVzID09IDQpICYmICh1bmFsaWduZWRfYWRk ciAmIDQpICYmCkBAIC01MDgxLDggKzUxMjcsOSBAQCBzdGF0aWMgaW50IHB0 d3JfZW11bGF0ZWRfdXBkYXRlKAogICAgICAgICBicmVhazsKICAgICBjYXNl IDA6CiAgICAgICAgIGJyZWFrOwotICAgIGNhc2UgMToKLSAgICAgICAgbDFl X3JlbW92ZV9mbGFncyhubDFlLCBfUEFHRV9SVyk7CisgICAgY2FzZSBfUEFH RV9SVyAuLi4gX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FUVFJTOgorICAgICAg ICBBU1NFUlQoIShyZXQgJiB+KF9QQUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRS UykpKTsKKyAgICAgICAgbDFlX2ZsaXBfZmxhZ3MobmwxZSwgcmV0KTsKICAg ICAgICAgYnJlYWs7CiAgICAgfQogCi0tLSBhL3hlbi9pbmNsdWRlL2FzbS14 ODYvcGFnZS5oCisrKyBiL3hlbi9pbmNsdWRlL2FzbS14ODYvcGFnZS5oCkBA IC0xNTcsNiArMTU3LDkgQEAgc3RhdGljIGlubGluZSBsNF9wZ2VudHJ5X3Qg bDRlX2Zyb21fcGFkZAogI2RlZmluZSBsM2VfcmVtb3ZlX2ZsYWdzKHgsIGZs YWdzKSAoKHgpLmwzICY9IH5wdXRfcHRlX2ZsYWdzKGZsYWdzKSkKICNkZWZp bmUgbDRlX3JlbW92ZV9mbGFncyh4LCBmbGFncykgKCh4KS5sNCAmPSB+cHV0 X3B0ZV9mbGFncyhmbGFncykpCiAKKy8qIEZsaXAgZmxhZ3MgaW4gYW4gZXhp c3RpbmcgTDEgUFRFLiAqLworI2RlZmluZSBsMWVfZmxpcF9mbGFncyh4LCBm bGFncykgICAgKCh4KS5sMSBePSBwdXRfcHRlX2ZsYWdzKGZsYWdzKSkKKwog LyogQ2hlY2sgaWYgYSBwdGUncyBwYWdlIG1hcHBpbmcgb3Igc2lnbmlmaWNh bnQgYWNjZXNzIGZsYWdzIGhhdmUgY2hhbmdlZC4gKi8KICNkZWZpbmUgbDFl X2hhc19jaGFuZ2VkKHgseSxmbGFncykgXAogICAgICggISEoKCh4KS5sMSBe ICh5KS5sMSkgJiAoKFBBRERSX01BU0smUEFHRV9NQVNLKXxwdXRfcHRlX2Zs YWdzKGZsYWdzKSkpICkK --=separator Content-Type: application/octet-stream; name="xsa154-4.4.patch" Content-Disposition: attachment; filename="xsa154-4.4.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC02OTcsNiArNjk3LDE1IEBAIGxp bWl0IGlzIGlnbm9yZWQgYnkgWGVuLgogCiBTcGVjaWZ5IGlmIHRoZSBNTUNv bmZpZyBzcGFjZSBzaG91bGQgYmUgZW5hYmxlZC4KIAorIyMjIG1taW8tcmVs YXgKKz4gYD0gPGJvb2xlYW4+IHwgYWxsYAorCis+IERlZmF1bHQ6IGBmYWxz ZWAKKworQnkgZGVmYXVsdCwgZG9tYWlucyBtYXkgbm90IGNyZWF0ZSBjYWNo ZWQgbWFwcGluZ3MgdG8gTU1JTyByZWdpb25zLgorVGhpcyBvcHRpb24gcmVs YXhlcyB0aGUgY2hlY2sgZm9yIERvbWFpbiAwIChvciB3aGVuIHVzaW5nIGBh bGxgLCBhbGwgUFYKK2RvbWFpbnMpLCB0byBwZXJtaXQgdGhlIHVzZSBvZiBj YWNoZWFibGUgTU1JTyBtYXBwaW5ncy4KKwogIyMjIG1zaQogPiBgPSA8Ym9v bGVhbj5gCiAKLS0tIGEveGVuL2FyY2gveDg2L2h2bS9tdHJyLmMKKysrIGIv eGVuL2FyY2gveDg2L2h2bS9tdHJyLmMKQEAgLTY5Myw4ICs2OTMsMTIgQEAg dWludDhfdCBlcHRlX2dldF9lbnRyeV9lbXQoc3RydWN0IGRvbWFpbgogICAg IGlmICggdi0+ZG9tYWluICE9IGQgKQogICAgICAgICB2ID0gZC0+dmNwdSA/ IGQtPnZjcHVbMF0gOiBOVUxMOwogCi0gICAgaWYgKCAhbWZuX3ZhbGlkKG1m bl94KG1mbikpICkKKyAgICBpZiAoICFtZm5fdmFsaWQobWZuX3gobWZuKSkg fHwKKyAgICAgICAgIHJhbmdlc2V0X2NvbnRhaW5zX3NpbmdsZXRvbihtbWlv X3JvX3JhbmdlcywgbWZuX3gobWZuKSkgKQorICAgIHsKKyAgICAgICAgKmlw YXQgPSAxOwogICAgICAgICByZXR1cm4gTVRSUl9UWVBFX1VOQ0FDSEFCTEU7 CisgICAgfQogCiAgICAgaWYgKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVh dHRyKGQsIGdmbiwgJnR5cGUpICkKICAgICAgICAgcmV0dXJuIHR5cGU7Ci0t LSBhL3hlbi9hcmNoL3g4Ni9tbS9wMm0tcHQuYworKysgYi94ZW4vYXJjaC94 ODYvbW0vcDJtLXB0LmMKQEAgLTkzLDYgKzkzLDggQEAgc3RhdGljIHVuc2ln bmVkIGxvbmcgcDJtX3R5cGVfdG9fZmxhZ3MocAogICAgIGNhc2UgcDJtX21t aW9fZGlyZWN0OgogICAgICAgICBpZiAoICFyYW5nZXNldF9jb250YWluc19z aW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1mbl94KG1mbikpICkKICAgICAg ICAgICAgIGZsYWdzIHw9IF9QQUdFX1JXOworICAgICAgICBlbHNlCisgICAg ICAgICAgICBmbGFncyB8PSBfUEFHRV9QV1Q7CiAgICAgICAgIHJldHVybiBm bGFncyB8IFAyTV9CQVNFX0ZMQUdTIHwgX1BBR0VfUENEOwogICAgIH0KIH0K LS0tIGEveGVuL2FyY2gveDg2L21tL3NoYWRvdy9tdWx0aS5jCisrKyBiL3hl bi9hcmNoL3g4Ni9tbS9zaGFkb3cvbXVsdGkuYwpAQCAtNTIxLDYgKzUyMSw3 IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgZ2ZuX3Qg dGFyZ2V0X2dmbiA9IGd1ZXN0X2wxZV9nZXRfZ2ZuKGd1ZXN0X2VudHJ5KTsK ICAgICB1MzIgcGFzc190aHJ1X2ZsYWdzOwogICAgIHUzMiBnZmxhZ3MsIHNm bGFnczsKKyAgICBib29sX3QgbW1pb19tZm47CiAKICAgICAvKiBXZSBkb24n dCBzaGFkb3cgUEFFIGwzcyAqLwogICAgIEFTU0VSVChHVUVTVF9QQUdJTkdf TEVWRUxTID4gMyB8fCBsZXZlbCAhPSAzKTsKQEAgLTU2MSw3ICs1NjIsMTAg QEAgX3NoX3Byb3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwKICAgICAvLyBtZm4g bWVhbnMgdGhhdCB3ZSBjYW4gbm90IHVzZWZ1bGx5IHNoYWRvdyBhbnl0aGlu ZywgYW5kIHNvIHdlCiAgICAgLy8gcmV0dXJuIGVhcmx5LgogICAgIC8vCi0g ICAgaWYgKCAhbWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgbW1pb19tZm4g PSAhbWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgICAgICAgICAgICB8fCAo bGV2ZWwgPT0gMQorICAgICAgICAgICAgICAgICAgICYmIHBhZ2VfZ2V0X293 bmVyKG1mbl90b19wYWdlKHRhcmdldF9tZm4pKSA9PSBkb21faW8pOworICAg IGlmICggbW1pb19tZm4KICAgICAgICAgICYmICEobGV2ZWwgPT0gMSAmJiAo IXNoYWRvd19tb2RlX3JlZmNvdW50cyhkKSAKICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgfHwgcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QpKSApCiAg ICAgewpAQCAtNTc5LDcgKzU4Myw3IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0 IHZjcHUgKnYsCiAgICAgICAgICAgICAgICAgICAgICAgIF9QQUdFX1JXIHwg X1BBR0VfUFJFU0VOVCk7CiAgICAgaWYgKCBndWVzdF9zdXBwb3J0c19ueCh2 KSApCiAgICAgICAgIHBhc3NfdGhydV9mbGFncyB8PSBfUEFHRV9OWF9CSVQ7 Ci0gICAgaWYgKCAhc2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmICFtZm5f dmFsaWQodGFyZ2V0X21mbikgKQorICAgIGlmICggbGV2ZWwgPT0gMSAmJiAh c2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmIG1taW9fbWZuICkKICAgICAg ICAgcGFzc190aHJ1X2ZsYWdzIHw9IF9QQUdFX1BBVCB8IF9QQUdFX1BDRCB8 IF9QQUdFX1BXVDsKICAgICBzZmxhZ3MgPSBnZmxhZ3MgJiBwYXNzX3RocnVf ZmxhZ3M7CiAKQEAgLTY3NiwxMCArNjgwLDE0IEBAIF9zaF9wcm9wYWdhdGUo c3RydWN0IHZjcHUgKnYsCiAgICAgfQogCiAgICAgLyogUmVhZC1vbmx5IG1l bW9yeSAqLwotICAgIGlmICggcDJtX2lzX3JlYWRvbmx5KHAybXQpIHx8Ci0g ICAgICAgICAocDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKLSAgICAgICAg ICByYW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMs IG1mbl94KHRhcmdldF9tZm4pKSkgKQorICAgIGlmICggcDJtX2lzX3JlYWRv bmx5KHAybXQpICkKICAgICAgICAgc2ZsYWdzICY9IH5fUEFHRV9SVzsKKyAg ICBlbHNlIGlmICggcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKKyAgICAg ICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9f cmFuZ2VzLCBtZm5feCh0YXJnZXRfbWZuKSkgKQorICAgIHsKKyAgICAgICAg c2ZsYWdzICY9IH4oX1BBR0VfUlcgfCBfUEFHRV9QQVQpOworICAgICAgICBz ZmxhZ3MgfD0gX1BBR0VfUENEIHwgX1BBR0VfUFdUOworICAgIH0KICAgICAK ICAgICAvLyBwcm90ZWN0IGd1ZXN0IHBhZ2UgdGFibGVzCiAgICAgLy8KQEAg LTEyMDEsMjIgKzEyMDksMjggQEAgc3RhdGljIGludCBzaGFkb3dfc2V0X2wx ZShzdHJ1Y3QgdmNwdSAqdgogICAgICAgICAgJiYgIXNoX2wxZV9pc19tYWdp YyhuZXdfc2wxZSkgKSAKICAgICB7CiAgICAgICAgIC8qIEFib3V0IHRvIGlu c3RhbGwgYSBuZXcgcmVmZXJlbmNlICovICAgICAgICAKLSAgICAgICAgaWYg KCBzaGFkb3dfbW9kZV9yZWZjb3VudHMoZCkgKSB7CisgICAgICAgIGlmICgg c2hhZG93X21vZGVfcmVmY291bnRzKGQpICkKKyAgICAgICAgeworI2RlZmlu ZSBQQUdFX0ZMSVBQQUJMRSAoX1BBR0VfUlcgfCBfUEFHRV9QV1QgfCBfUEFH RV9QQ0QgfCBfUEFHRV9QQVQpCisgICAgICAgICAgICBpbnQgcmM7CisKICAg ICAgICAgICAgIFRSQUNFX1NIQURPV19QQVRIX0ZMQUcoVFJDRV9TRkxBR19T SEFET1dfTDFfR0VUX1JFRik7Ci0gICAgICAgICAgICBzd2l0Y2ggKCBzaGFk b3dfZ2V0X3BhZ2VfZnJvbV9sMWUobmV3X3NsMWUsIGQsIG5ld190eXBlKSAp CisgICAgICAgICAgICBzd2l0Y2ggKCByYyA9IHNoYWRvd19nZXRfcGFnZV9m cm9tX2wxZShuZXdfc2wxZSwgZCwgbmV3X3R5cGUpICkKICAgICAgICAgICAg IHsKICAgICAgICAgICAgIGRlZmF1bHQ6CiAgICAgICAgICAgICAgICAgLyog RG9lc24ndCBsb29rIGxpa2UgYSBwYWdldGFibGUuICovCiAgICAgICAgICAg ICAgICAgZmxhZ3MgfD0gU0hBRE9XX1NFVF9FUlJPUjsKICAgICAgICAgICAg ICAgICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZW1wdHkoKTsKICAgICAgICAg ICAgICAgICBicmVhazsKLSAgICAgICAgICAgIGNhc2UgMToKLSAgICAgICAg ICAgICAgICBzaGFkb3dfbDFlX3JlbW92ZV9mbGFncyhuZXdfc2wxZSwgX1BB R0VfUlcpOworICAgICAgICAgICAgY2FzZSBQQUdFX0ZMSVBQQUJMRSAmIC1Q QUdFX0ZMSVBQQUJMRSAuLi4gUEFHRV9GTElQUEFCTEU6CisgICAgICAgICAg ICAgICAgQVNTRVJUKCEocmMgJiB+UEFHRV9GTElQUEFCTEUpKTsKKyAgICAg ICAgICAgICAgICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZmxpcF9mbGFncyhu ZXdfc2wxZSwgcmMpOwogICAgICAgICAgICAgICAgIC8qIGZhbGwgdGhyb3Vn aCAqLwogICAgICAgICAgICAgY2FzZSAwOgogICAgICAgICAgICAgICAgIHNo YWRvd192cmFtX2dldF9sMWUobmV3X3NsMWUsIHNsMWUsIHNsMW1mbiwgZCk7 CiAgICAgICAgICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICB9CisjdW5k ZWYgUEFHRV9GTElQUEFCTEUKICAgICAgICAgfQogICAgIH0gCiAKLS0tIGEv eGVuL2FyY2gveDg2L21tL3NoYWRvdy90eXBlcy5oCisrKyBiL3hlbi9hcmNo L3g4Ni9tbS9zaGFkb3cvdHlwZXMuaApAQCAtMTAwLDYgKzEwMCw5IEBAIHN0 YXRpYyBpbmxpbmUgdTMyIHNoYWRvd19sNGVfZ2V0X2ZsYWdzKHMKIHN0YXRp YyBpbmxpbmUgc2hhZG93X2wxZV90CiBzaGFkb3dfbDFlX3JlbW92ZV9mbGFn cyhzaGFkb3dfbDFlX3Qgc2wxZSwgdTMyIGZsYWdzKQogeyBsMWVfcmVtb3Zl X2ZsYWdzKHNsMWUsIGZsYWdzKTsgcmV0dXJuIHNsMWU7IH0KK3N0YXRpYyBp bmxpbmUgc2hhZG93X2wxZV90CitzaGFkb3dfbDFlX2ZsaXBfZmxhZ3Moc2hh ZG93X2wxZV90IHNsMWUsIHUzMiBmbGFncykKK3sgbDFlX2ZsaXBfZmxhZ3Mo c2wxZSwgZmxhZ3MpOyByZXR1cm4gc2wxZTsgfQogCiBzdGF0aWMgaW5saW5l IHNoYWRvd19sMWVfdCBzaGFkb3dfbDFlX2VtcHR5KHZvaWQpIAogeyByZXR1 cm4gbDFlX2VtcHR5KCk7IH0KLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysr IGIveGVuL2FyY2gveDg2L21tLmMKQEAgLTE4OCw2ICsxODgsMTggQEAgc3Rh dGljIHVpbnQzMl90IGJhc2VfZGlzYWxsb3dfbWFzazsKICAgICAgIGlzX3B2 X2RvbWFpbihkKSkgPyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICBcCiAgICAgIEwxX0RJU0FMTE9XX01BU0sgOiAoTDFfRElTQUxM T1dfTUFTSyAmIH5QQUdFX0NBQ0hFX0FUVFJTKSkKIAorc3RhdGljIHM4IF9f cmVhZF9tb3N0bHkgb3B0X21taW9fcmVsYXg7CitzdGF0aWMgdm9pZCBfX2lu aXQgcGFyc2VfbW1pb19yZWxheChjb25zdCBjaGFyICpzKQoreworICAgIGlm ICggISpzICkKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSAxOworICAgIGVs c2UKKyAgICAgICAgb3B0X21taW9fcmVsYXggPSBwYXJzZV9ib29sKHMpOwor ICAgIGlmICggb3B0X21taW9fcmVsYXggPCAwICYmIHN0cmNtcChzLCAiYWxs IikgKQorICAgICAgICBvcHRfbW1pb19yZWxheCA9IDA7Cit9CitjdXN0b21f cGFyYW0oIm1taW8tcmVsYXgiLCBwYXJzZV9tbWlvX3JlbGF4KTsKKwogc3Rh dGljIHZvaWQgX19pbml0IGluaXRfZnJhbWV0YWJsZV9jaHVuayh2b2lkICpz dGFydCwgdm9pZCAqZW5kKQogewogICAgIHVuc2lnbmVkIGxvbmcgcyA9ICh1 bnNpZ25lZCBsb25nKXN0YXJ0OwpAQCAtNzczLDYgKzc4NSw4IEBAIGdldF9w YWdlX2Zyb21fbDFlKAogICAgIGlmICggIW1mbl92YWxpZChtZm4pIHx8CiAg ICAgICAgICAocmVhbF9wZ19vd25lciA9IHBhZ2VfZ2V0X293bmVyX2FuZF9y ZWZlcmVuY2UocGFnZSkpID09IGRvbV9pbyApCiAgICAgeworICAgICAgICBp bnQgZmxpcCA9IDA7CisKICAgICAgICAgLyogT25seSBuZWVkZWQgdGhlIHJl ZmVyZW5jZSB0byBjb25maXJtIGRvbV9pbyBvd25lcnNoaXAuICovCiAgICAg ICAgIGlmICggbWZuX3ZhbGlkKG1mbikgKQogICAgICAgICAgICAgcHV0X3Bh Z2UocGFnZSk7CkBAIC04MDUsMTMgKzgxOSw0MSBAQCBnZXRfcGFnZV9mcm9t X2wxZSgKICAgICAgICAgICAgIHJldHVybiAtRUlOVkFMOwogICAgICAgICB9 CiAKLSAgICAgICAgaWYgKCAhKGwxZiAmIF9QQUdFX1JXKSB8fAotICAgICAg ICAgICAgICFyYW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19y YW5nZXMsIG1mbikgKQotICAgICAgICAgICAgcmV0dXJuIDA7Ci0gICAgICAg IGRwcmludGsoWEVOTE9HX0dfV0FSTklORywKLSAgICAgICAgICAgICAgICAi ZCVkOiBGb3JjaW5nIHJlYWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxuIiwK LSAgICAgICAgICAgICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZuKTsK LSAgICAgICAgcmV0dXJuIDE7CisgICAgICAgIGlmICggIXJhbmdlc2V0X2Nv bnRhaW5zX3NpbmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuKSApCisgICAg ICAgIHsKKyAgICAgICAgICAgIC8qIE1NSU8gcGFnZXMgbXVzdCBub3QgYmUg bWFwcGVkIGNhY2hhYmxlIHVubGVzcyByZXF1ZXN0ZWQgc28uICovCisgICAg ICAgICAgICBzd2l0Y2ggKCBvcHRfbW1pb19yZWxheCApCisgICAgICAgICAg ICB7CisgICAgICAgICAgICBjYXNlIDA6CisgICAgICAgICAgICAgICAgYnJl YWs7CisgICAgICAgICAgICBjYXNlIDE6CisgICAgICAgICAgICAgICAgaWYg KCBpc19oYXJkd2FyZV9kb21haW4obDFlX293bmVyKSApCisgICAgICAgICAg ICBjYXNlIC0xOgorICAgICAgICAgICAgICAgICAgICByZXR1cm4gMDsKKyAg ICAgICAgICAgIGRlZmF1bHQ6CisgICAgICAgICAgICAgICAgQVNTRVJUX1VO UkVBQ0hBQkxFKCk7CisgICAgICAgICAgICB9CisgICAgICAgIH0KKyAgICAg ICAgZWxzZSBpZiAoIGwxZiAmIF9QQUdFX1JXICkKKyAgICAgICAgeworICAg ICAgICAgICAgZHByaW50ayhYRU5MT0dfR19XQVJOSU5HLAorICAgICAgICAg ICAgICAgICAgICAiZCVkOiBGb3JjaW5nIHJlYWQtb25seSBhY2Nlc3MgdG8g TUZOICVseFxuIiwKKyAgICAgICAgICAgICAgICAgICAgbDFlX293bmVyLT5k b21haW5faWQsIG1mbik7CisgICAgICAgICAgICBmbGlwID0gX1BBR0VfUlc7 CisgICAgICAgIH0KKworICAgICAgICBzd2l0Y2ggKCBsMWYgJiBQQUdFX0NB Q0hFX0FUVFJTICkKKyAgICAgICAgeworICAgICAgICBjYXNlIDA6IC8qIFdC ICovCisgICAgICAgICAgICBmbGlwIHw9IF9QQUdFX1BXVCB8IF9QQUdFX1BD RDsKKyAgICAgICAgICAgIGJyZWFrOworICAgICAgICBjYXNlIF9QQUdFX1BX VDogLyogV1QgKi8KKyAgICAgICAgY2FzZSBfUEFHRV9QV1QgfCBfUEFHRV9Q QVQ6IC8qIFdQICovCisgICAgICAgICAgICBmbGlwIHw9IF9QQUdFX1BDRCB8 IChsMWYgJiBfUEFHRV9QQVQpOworICAgICAgICAgICAgYnJlYWs7CisgICAg ICAgIH0KKworICAgICAgICByZXR1cm4gZmxpcDsKICAgICB9CiAKICAgICBp ZiAoIHVubGlrZWx5KCAocmVhbF9wZ19vd25lciAhPSBwZ19vd25lcikgJiYK QEAgLTEyMTAsOCArMTI1Miw5IEBAIHN0YXRpYyBpbnQgYWxsb2NfbDFfdGFi bGUoc3RydWN0IHBhZ2VfaW4KICAgICAgICAgICAgICAgICBnb3RvIGZhaWw7 CiAgICAgICAgICAgICBjYXNlIDA6CiAgICAgICAgICAgICAgICAgYnJlYWs7 Ci0gICAgICAgICAgICBjYXNlIDE6Ci0gICAgICAgICAgICAgICAgbDFlX3Jl bW92ZV9mbGFncyhwbDFlW2ldLCBfUEFHRV9SVyk7CisgICAgICAgICAgICBj YXNlIF9QQUdFX1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6 CisgICAgICAgICAgICAgICAgQVNTRVJUKCEocmV0ICYgfihfUEFHRV9SVyB8 IFBBR0VfQ0FDSEVfQVRUUlMpKSk7CisgICAgICAgICAgICAgICAgbDFlX2Zs aXBfZmxhZ3MocGwxZVtpXSwgcmV0KTsKICAgICAgICAgICAgICAgICBicmVh azsKICAgICAgICAgICAgIH0KIApAQCAtMTcwNiw4ICsxNzQ5LDkgQEAgc3Rh dGljIGludCBtb2RfbDFfZW50cnkobDFfcGdlbnRyeV90ICpwbAogICAgICAg ICAgICAgcmV0dXJuIC1FSU5WQUw7CiAgICAgICAgIH0KIAotICAgICAgICAv KiBGYXN0IHBhdGggZm9yIGlkZW50aWNhbCBtYXBwaW5nLCByL3cgYW5kIHBy ZXNlbmNlLiAqLwotICAgICAgICBpZiAoICFsMWVfaGFzX2NoYW5nZWQob2wx ZSwgbmwxZSwgX1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5UKSApCisgICAgICAg IC8qIEZhc3QgcGF0aCBmb3IgaWRlbnRpY2FsIG1hcHBpbmcsIHIvdywgcHJl c2VuY2UsIGFuZCBjYWNoYWJpbGl0eS4gKi8KKyAgICAgICAgaWYgKCAhbDFl X2hhc19jaGFuZ2VkKG9sMWUsIG5sMWUsCisgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBQQUdFX0NBQ0hFX0FUVFJTIHwgX1BBR0VfUlcgfCBfUEFH RV9QUkVTRU5UKSApCiAgICAgICAgIHsKICAgICAgICAgICAgIGFkanVzdF9n dWVzdF9sMWUobmwxZSwgcHRfZG9tKTsKICAgICAgICAgICAgIGlmICggVVBE QVRFX0VOVFJZKGwxLCBwbDFlLCBvbDFlLCBubDFlLCBnbDFtZm4sIHB0X3Zj cHUsCkBAIC0xNzMwLDggKzE3NzQsOSBAQCBzdGF0aWMgaW50IG1vZF9sMV9l bnRyeShsMV9wZ2VudHJ5X3QgKnBsCiAgICAgICAgICAgICByZXR1cm4gcmM7 CiAgICAgICAgIGNhc2UgMDoKICAgICAgICAgICAgIGJyZWFrOwotICAgICAg ICBjYXNlIDE6Ci0gICAgICAgICAgICBsMWVfcmVtb3ZlX2ZsYWdzKG5sMWUs IF9QQUdFX1JXKTsKKyAgICAgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0Vf UlcgfCBQQUdFX0NBQ0hFX0FUVFJTOgorICAgICAgICAgICAgQVNTRVJUKCEo cmMgJiB+KF9QQUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUykpKTsKKyAgICAg ICAgICAgIGwxZV9mbGlwX2ZsYWdzKG5sMWUsIHJjKTsKICAgICAgICAgICAg IHJjID0gMDsKICAgICAgICAgICAgIGJyZWFrOwogICAgICAgICB9CkBAIC00 OTE5LDYgKzQ5NjQsNyBAQCBzdGF0aWMgaW50IHB0d3JfZW11bGF0ZWRfdXBk YXRlKAogICAgIGwxX3BnZW50cnlfdCBwdGUsIG9sMWUsIG5sMWUsICpwbDFl OwogICAgIHN0cnVjdCB2Y3B1ICp2ID0gY3VycmVudDsKICAgICBzdHJ1Y3Qg ZG9tYWluICpkID0gdi0+ZG9tYWluOworICAgIGludCByZXQ7CiAKICAgICAv KiBPbmx5IGFsbG93IG5hdHVyYWxseS1hbGlnbmVkIHN0b3JlcyB3aXRoaW4g dGhlIG9yaWdpbmFsICVjcjIgcGFnZS4gKi8KICAgICBpZiAoIHVubGlrZWx5 KCgoYWRkcl5wdHdyX2N0eHQtPmNyMikgJiBQQUdFX01BU0spIHx8IChhZGRy ICYgKGJ5dGVzLTEpKSkgKQpAQCAtNDk2Niw3ICs1MDEyLDcgQEAgc3RhdGlj IGludCBwdHdyX2VtdWxhdGVkX3VwZGF0ZSgKIAogICAgIC8qIENoZWNrIHRo ZSBuZXcgUFRFLiAqLwogICAgIG5sMWUgPSBsMWVfZnJvbV9pbnRwdGUodmFs KTsKLSAgICBzd2l0Y2ggKCBnZXRfcGFnZV9mcm9tX2wxZShubDFlLCBkLCBk KSApCisgICAgc3dpdGNoICggcmV0ID0gZ2V0X3BhZ2VfZnJvbV9sMWUobmwx ZSwgZCwgZCkgKQogICAgIHsKICAgICBkZWZhdWx0OgogICAgICAgICBpZiAo IGlzX3B2XzMyYml0X2RvbWFpbihkKSAmJiAoYnl0ZXMgPT0gNCkgJiYgKHVu YWxpZ25lZF9hZGRyICYgNCkgJiYKQEAgLTQ5OTAsOCArNTAzNiw5IEBAIHN0 YXRpYyBpbnQgcHR3cl9lbXVsYXRlZF91cGRhdGUoCiAgICAgICAgIGJyZWFr OwogICAgIGNhc2UgMDoKICAgICAgICAgYnJlYWs7Ci0gICAgY2FzZSAxOgot ICAgICAgICBsMWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JXKTsKKyAg ICBjYXNlIF9QQUdFX1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRU UlM6CisgICAgICAgIEFTU0VSVCghKHJldCAmIH4oX1BBR0VfUlcgfCBQQUdF X0NBQ0hFX0FUVFJTKSkpOworICAgICAgICBsMWVfZmxpcF9mbGFncyhubDFl LCByZXQpOwogICAgICAgICBicmVhazsKICAgICB9CiAKLS0tIGEveGVuL2lu Y2x1ZGUvYXNtLXg4Ni9wYWdlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4 Ni9wYWdlLmgKQEAgLTE1Nyw2ICsxNTcsOSBAQCBzdGF0aWMgaW5saW5lIGw0 X3BnZW50cnlfdCBsNGVfZnJvbV9wYWRkCiAjZGVmaW5lIGwzZV9yZW1vdmVf ZmxhZ3MoeCwgZmxhZ3MpICgoeCkubDMgJj0gfnB1dF9wdGVfZmxhZ3MoZmxh Z3MpKQogI2RlZmluZSBsNGVfcmVtb3ZlX2ZsYWdzKHgsIGZsYWdzKSAoKHgp Lmw0ICY9IH5wdXRfcHRlX2ZsYWdzKGZsYWdzKSkKIAorLyogRmxpcCBmbGFn cyBpbiBhbiBleGlzdGluZyBMMSBQVEUuICovCisjZGVmaW5lIGwxZV9mbGlw X2ZsYWdzKHgsIGZsYWdzKSAgICAoKHgpLmwxIF49IHB1dF9wdGVfZmxhZ3Mo ZmxhZ3MpKQorCiAvKiBDaGVjayBpZiBhIHB0ZSdzIHBhZ2UgbWFwcGluZyBv ciBzaWduaWZpY2FudCBhY2Nlc3MgZmxhZ3MgaGF2ZSBjaGFuZ2VkLiAqLwog I2RlZmluZSBsMWVfaGFzX2NoYW5nZWQoeCx5LGZsYWdzKSBcCiAgICAgKCAh ISgoKHgpLmwxIF4gKHkpLmwxKSAmICgoUEFERFJfTUFTSyZQQUdFX01BU0sp fHB1dF9wdGVfZmxhZ3MoZmxhZ3MpKSkgKQo= --=separator Content-Type: application/octet-stream; name="xsa154-4.5.patch" Content-Disposition: attachment; filename="xsa154-4.5.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xMDAwLDYgKzEwMDAsMTUgQEAg bGltaXQgaXMgaWdub3JlZCBieSBYZW4uCiAKIFNwZWNpZnkgaWYgdGhlIE1N Q29uZmlnIHNwYWNlIHNob3VsZCBiZSBlbmFibGVkLgogCisjIyMgbW1pby1y ZWxheAorPiBgPSA8Ym9vbGVhbj4gfCBhbGxgCisKKz4gRGVmYXVsdDogYGZh bHNlYAorCitCeSBkZWZhdWx0LCBkb21haW5zIG1heSBub3QgY3JlYXRlIGNh Y2hlZCBtYXBwaW5ncyB0byBNTUlPIHJlZ2lvbnMuCitUaGlzIG9wdGlvbiBy ZWxheGVzIHRoZSBjaGVjayBmb3IgRG9tYWluIDAgKG9yIHdoZW4gdXNpbmcg YGFsbGAsIGFsbCBQVgorZG9tYWlucyksIHRvIHBlcm1pdCB0aGUgdXNlIG9m IGNhY2hlYWJsZSBNTUlPIG1hcHBpbmdzLgorCiAjIyMgbXNpCiA+IGA9IDxi b29sZWFuPmAKIAotLS0gYS94ZW4vYXJjaC94ODYvaHZtL210cnIuYworKysg Yi94ZW4vYXJjaC94ODYvaHZtL210cnIuYwpAQCAtODEwLDggKzgxMCwxNyBA QCBpbnQgZXB0ZV9nZXRfZW50cnlfZW10KHN0cnVjdCBkb21haW4gKmQsCiAg ICAgaWYgKCB2LT5kb21haW4gIT0gZCApCiAgICAgICAgIHYgPSBkLT52Y3B1 ID8gZC0+dmNwdVswXSA6IE5VTEw7CiAKLSAgICBpZiAoICFtZm5fdmFsaWQo bWZuX3gobWZuKSkgKQorICAgIGlmICggIW1mbl92YWxpZChtZm5feChtZm4p KSB8fAorICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfcmFuZ2UobW1pb19y b19yYW5nZXMsIG1mbl94KG1mbiksCisgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBtZm5feChtZm4pICsgKDFVTCA8PCBvcmRlcikgLSAxKSAp CisgICAgeworICAgICAgICAqaXBhdCA9IDE7CiAgICAgICAgIHJldHVybiBN VFJSX1RZUEVfVU5DQUNIQUJMRTsKKyAgICB9CisKKyAgICBpZiAoIHJhbmdl c2V0X292ZXJsYXBzX3JhbmdlKG1taW9fcm9fcmFuZ2VzLCBtZm5feChtZm4p LAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgbWZuX3gobWZu KSArICgxVUwgPDwgb3JkZXIpIC0gMSkgKQorICAgICAgICByZXR1cm4gLTE7 CiAKICAgICBzd2l0Y2ggKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVhdHRy KGQsIGdmbiwgb3JkZXIsICZ0eXBlKSApCiAgICAgewotLS0gYS94ZW4vYXJj aC94ODYvbW0vcDJtLXB0LmMKKysrIGIveGVuL2FyY2gveDg2L21tL3AybS1w dC5jCkBAIC0xMDcsNiArMTA3LDggQEAgc3RhdGljIHVuc2lnbmVkIGxvbmcg cDJtX3R5cGVfdG9fZmxhZ3MocAogICAgIGNhc2UgcDJtX21taW9fZGlyZWN0 OgogICAgICAgICBpZiAoICFyYW5nZXNldF9jb250YWluc19zaW5nbGV0b24o bW1pb19yb19yYW5nZXMsIG1mbl94KG1mbikpICkKICAgICAgICAgICAgIGZs YWdzIHw9IF9QQUdFX1JXOworICAgICAgICBlbHNlCisgICAgICAgICAgICBm bGFncyB8PSBfUEFHRV9QV1Q7CiAgICAgICAgIHJldHVybiBmbGFncyB8IFAy TV9CQVNFX0ZMQUdTIHwgX1BBR0VfUENEOwogICAgIH0KIH0KLS0tIGEveGVu L2FyY2gveDg2L21tL3NoYWRvdy9tdWx0aS5jCisrKyBiL3hlbi9hcmNoL3g4 Ni9tbS9zaGFkb3cvbXVsdGkuYwpAQCAtNTIxLDYgKzUyMSw3IEBAIF9zaF9w cm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgZ2ZuX3QgdGFyZ2V0X2dm biA9IGd1ZXN0X2wxZV9nZXRfZ2ZuKGd1ZXN0X2VudHJ5KTsKICAgICB1MzIg cGFzc190aHJ1X2ZsYWdzOwogICAgIHUzMiBnZmxhZ3MsIHNmbGFnczsKKyAg ICBib29sX3QgbW1pb19tZm47CiAKICAgICAvKiBXZSBkb24ndCBzaGFkb3cg UEFFIGwzcyAqLwogICAgIEFTU0VSVChHVUVTVF9QQUdJTkdfTEVWRUxTID4g MyB8fCBsZXZlbCAhPSAzKTsKQEAgLTU2MSw3ICs1NjIsMTAgQEAgX3NoX3By b3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwKICAgICAvLyBtZm4gbWVhbnMgdGhh dCB3ZSBjYW4gbm90IHVzZWZ1bGx5IHNoYWRvdyBhbnl0aGluZywgYW5kIHNv IHdlCiAgICAgLy8gcmV0dXJuIGVhcmx5LgogICAgIC8vCi0gICAgaWYgKCAh bWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgbW1pb19tZm4gPSAhbWZuX3Zh bGlkKHRhcmdldF9tZm4pCisgICAgICAgICAgICAgICB8fCAobGV2ZWwgPT0g MQorICAgICAgICAgICAgICAgICAgICYmIHBhZ2VfZ2V0X293bmVyKG1mbl90 b19wYWdlKHRhcmdldF9tZm4pKSA9PSBkb21faW8pOworICAgIGlmICggbW1p b19tZm4KICAgICAgICAgICYmICEobGV2ZWwgPT0gMSAmJiAoIXNoYWRvd19t b2RlX3JlZmNvdW50cyhkKSAKICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgfHwgcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QpKSApCiAgICAgewpAQCAt NTc5LDcgKzU4Myw3IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZjcHUgKnYs CiAgICAgICAgICAgICAgICAgICAgICAgIF9QQUdFX1JXIHwgX1BBR0VfUFJF U0VOVCk7CiAgICAgaWYgKCBndWVzdF9zdXBwb3J0c19ueCh2KSApCiAgICAg ICAgIHBhc3NfdGhydV9mbGFncyB8PSBfUEFHRV9OWF9CSVQ7Ci0gICAgaWYg KCAhc2hhZG93X21vZGVfcmVmY291bnRzKGQpICYmICFtZm5fdmFsaWQodGFy Z2V0X21mbikgKQorICAgIGlmICggbGV2ZWwgPT0gMSAmJiAhc2hhZG93X21v ZGVfcmVmY291bnRzKGQpICYmIG1taW9fbWZuICkKICAgICAgICAgcGFzc190 aHJ1X2ZsYWdzIHw9IF9QQUdFX1BBVCB8IF9QQUdFX1BDRCB8IF9QQUdFX1BX VDsKICAgICBzZmxhZ3MgPSBnZmxhZ3MgJiBwYXNzX3RocnVfZmxhZ3M7CiAK QEAgLTY3OCwxMCArNjgyLDE0IEBAIF9zaF9wcm9wYWdhdGUoc3RydWN0IHZj cHUgKnYsCiAgICAgfQogCiAgICAgLyogUmVhZC1vbmx5IG1lbW9yeSAqLwot ICAgIGlmICggcDJtX2lzX3JlYWRvbmx5KHAybXQpIHx8Ci0gICAgICAgICAo cDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKLSAgICAgICAgICByYW5nZXNl dF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1mbl94KHRh cmdldF9tZm4pKSkgKQorICAgIGlmICggcDJtX2lzX3JlYWRvbmx5KHAybXQp ICkKICAgICAgICAgc2ZsYWdzICY9IH5fUEFHRV9SVzsKKyAgICBlbHNlIGlm ICggcDJtdCA9PSBwMm1fbW1pb19kaXJlY3QgJiYKKyAgICAgICAgICAgICAg cmFuZ2VzZXRfY29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9fcmFuZ2VzLCBt Zm5feCh0YXJnZXRfbWZuKSkgKQorICAgIHsKKyAgICAgICAgc2ZsYWdzICY9 IH4oX1BBR0VfUlcgfCBfUEFHRV9QQVQpOworICAgICAgICBzZmxhZ3MgfD0g X1BBR0VfUENEIHwgX1BBR0VfUFdUOworICAgIH0KICAgICAKICAgICAvLyBw cm90ZWN0IGd1ZXN0IHBhZ2UgdGFibGVzCiAgICAgLy8KQEAgLTExODgsMjIg KzExOTYsMjggQEAgc3RhdGljIGludCBzaGFkb3dfc2V0X2wxZShzdHJ1Y3Qg dmNwdSAqdgogICAgICAgICAgJiYgIXNoX2wxZV9pc19tYWdpYyhuZXdfc2wx ZSkgKSAKICAgICB7CiAgICAgICAgIC8qIEFib3V0IHRvIGluc3RhbGwgYSBu ZXcgcmVmZXJlbmNlICovICAgICAgICAKLSAgICAgICAgaWYgKCBzaGFkb3df bW9kZV9yZWZjb3VudHMoZCkgKSB7CisgICAgICAgIGlmICggc2hhZG93X21v ZGVfcmVmY291bnRzKGQpICkKKyAgICAgICAgeworI2RlZmluZSBQQUdFX0ZM SVBQQUJMRSAoX1BBR0VfUlcgfCBfUEFHRV9QV1QgfCBfUEFHRV9QQ0QgfCBf UEFHRV9QQVQpCisgICAgICAgICAgICBpbnQgcmM7CisKICAgICAgICAgICAg IFRSQUNFX1NIQURPV19QQVRIX0ZMQUcoVFJDRV9TRkxBR19TSEFET1dfTDFf R0VUX1JFRik7Ci0gICAgICAgICAgICBzd2l0Y2ggKCBzaGFkb3dfZ2V0X3Bh Z2VfZnJvbV9sMWUobmV3X3NsMWUsIGQsIG5ld190eXBlKSApCisgICAgICAg ICAgICBzd2l0Y2ggKCByYyA9IHNoYWRvd19nZXRfcGFnZV9mcm9tX2wxZShu ZXdfc2wxZSwgZCwgbmV3X3R5cGUpICkKICAgICAgICAgICAgIHsKICAgICAg ICAgICAgIGRlZmF1bHQ6CiAgICAgICAgICAgICAgICAgLyogRG9lc24ndCBs b29rIGxpa2UgYSBwYWdldGFibGUuICovCiAgICAgICAgICAgICAgICAgZmxh Z3MgfD0gU0hBRE9XX1NFVF9FUlJPUjsKICAgICAgICAgICAgICAgICBuZXdf c2wxZSA9IHNoYWRvd19sMWVfZW1wdHkoKTsKICAgICAgICAgICAgICAgICBi cmVhazsKLSAgICAgICAgICAgIGNhc2UgMToKLSAgICAgICAgICAgICAgICBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncyhuZXdfc2wxZSwgX1BBR0VfUlcpOwor ICAgICAgICAgICAgY2FzZSBQQUdFX0ZMSVBQQUJMRSAmIC1QQUdFX0ZMSVBQ QUJMRSAuLi4gUEFHRV9GTElQUEFCTEU6CisgICAgICAgICAgICAgICAgQVNT RVJUKCEocmMgJiB+UEFHRV9GTElQUEFCTEUpKTsKKyAgICAgICAgICAgICAg ICBuZXdfc2wxZSA9IHNoYWRvd19sMWVfZmxpcF9mbGFncyhuZXdfc2wxZSwg cmMpOwogICAgICAgICAgICAgICAgIC8qIGZhbGwgdGhyb3VnaCAqLwogICAg ICAgICAgICAgY2FzZSAwOgogICAgICAgICAgICAgICAgIHNoYWRvd192cmFt X2dldF9sMWUobmV3X3NsMWUsIHNsMWUsIHNsMW1mbiwgZCk7CiAgICAgICAg ICAgICAgICAgYnJlYWs7CiAgICAgICAgICAgICB9CisjdW5kZWYgUEFHRV9G TElQUEFCTEUKICAgICAgICAgfQogICAgIH0gCiAKLS0tIGEveGVuL2FyY2gv eDg2L21tL3NoYWRvdy90eXBlcy5oCisrKyBiL3hlbi9hcmNoL3g4Ni9tbS9z aGFkb3cvdHlwZXMuaApAQCAtMTAwLDYgKzEwMCw5IEBAIHN0YXRpYyBpbmxp bmUgdTMyIHNoYWRvd19sNGVfZ2V0X2ZsYWdzKHMKIHN0YXRpYyBpbmxpbmUg c2hhZG93X2wxZV90CiBzaGFkb3dfbDFlX3JlbW92ZV9mbGFncyhzaGFkb3df bDFlX3Qgc2wxZSwgdTMyIGZsYWdzKQogeyBsMWVfcmVtb3ZlX2ZsYWdzKHNs MWUsIGZsYWdzKTsgcmV0dXJuIHNsMWU7IH0KK3N0YXRpYyBpbmxpbmUgc2hh ZG93X2wxZV90CitzaGFkb3dfbDFlX2ZsaXBfZmxhZ3Moc2hhZG93X2wxZV90 IHNsMWUsIHUzMiBmbGFncykKK3sgbDFlX2ZsaXBfZmxhZ3Moc2wxZSwgZmxh Z3MpOyByZXR1cm4gc2wxZTsgfQogCiBzdGF0aWMgaW5saW5lIHNoYWRvd19s MWVfdCBzaGFkb3dfbDFlX2VtcHR5KHZvaWQpIAogeyByZXR1cm4gbDFlX2Vt cHR5KCk7IH0KLS0tIGEveGVuL2FyY2gveDg2L21tLmMKKysrIGIveGVuL2Fy Y2gveDg2L21tLmMKQEAgLTE4MSw2ICsxODEsMTggQEAgc3RhdGljIHVpbnQz Ml90IGJhc2VfZGlzYWxsb3dfbWFzazsKICAgICAgIGlzX3B2X2RvbWFpbihk KSkgPyAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBc CiAgICAgIEwxX0RJU0FMTE9XX01BU0sgOiAoTDFfRElTQUxMT1dfTUFTSyAm IH5QQUdFX0NBQ0hFX0FUVFJTKSkKIAorc3RhdGljIHM4IF9fcmVhZF9tb3N0 bHkgb3B0X21taW9fcmVsYXg7CitzdGF0aWMgdm9pZCBfX2luaXQgcGFyc2Vf bW1pb19yZWxheChjb25zdCBjaGFyICpzKQoreworICAgIGlmICggISpzICkK KyAgICAgICAgb3B0X21taW9fcmVsYXggPSAxOworICAgIGVsc2UKKyAgICAg ICAgb3B0X21taW9fcmVsYXggPSBwYXJzZV9ib29sKHMpOworICAgIGlmICgg b3B0X21taW9fcmVsYXggPCAwICYmIHN0cmNtcChzLCAiYWxsIikgKQorICAg ICAgICBvcHRfbW1pb19yZWxheCA9IDA7Cit9CitjdXN0b21fcGFyYW0oIm1t aW8tcmVsYXgiLCBwYXJzZV9tbWlvX3JlbGF4KTsKKwogc3RhdGljIHZvaWQg X19pbml0IGluaXRfZnJhbWV0YWJsZV9jaHVuayh2b2lkICpzdGFydCwgdm9p ZCAqZW5kKQogewogICAgIHVuc2lnbmVkIGxvbmcgcyA9ICh1bnNpZ25lZCBs b25nKXN0YXJ0OwpAQCAtNzY2LDYgKzc3OCw4IEBAIGdldF9wYWdlX2Zyb21f bDFlKAogICAgIGlmICggIW1mbl92YWxpZChtZm4pIHx8CiAgICAgICAgICAo cmVhbF9wZ19vd25lciA9IHBhZ2VfZ2V0X293bmVyX2FuZF9yZWZlcmVuY2Uo cGFnZSkpID09IGRvbV9pbyApCiAgICAgeworICAgICAgICBpbnQgZmxpcCA9 IDA7CisKICAgICAgICAgLyogT25seSBuZWVkZWQgdGhlIHJlZmVyZW5jZSB0 byBjb25maXJtIGRvbV9pbyBvd25lcnNoaXAuICovCiAgICAgICAgIGlmICgg bWZuX3ZhbGlkKG1mbikgKQogICAgICAgICAgICAgcHV0X3BhZ2UocGFnZSk7 CkBAIC03OTgsMTMgKzgxMiw0MSBAQCBnZXRfcGFnZV9mcm9tX2wxZSgKICAg ICAgICAgICAgIHJldHVybiAtRUlOVkFMOwogICAgICAgICB9CiAKLSAgICAg ICAgaWYgKCAhKGwxZiAmIF9QQUdFX1JXKSB8fAotICAgICAgICAgICAgICFy YW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1m bikgKQotICAgICAgICAgICAgcmV0dXJuIDA7Ci0gICAgICAgIGRwcmludGso WEVOTE9HX0dfV0FSTklORywKLSAgICAgICAgICAgICAgICAiZCVkOiBGb3Jj aW5nIHJlYWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxuIiwKLSAgICAgICAg ICAgICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZuKTsKLSAgICAgICAg cmV0dXJuIDE7CisgICAgICAgIGlmICggIXJhbmdlc2V0X2NvbnRhaW5zX3Np bmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuKSApCisgICAgICAgIHsKKyAg ICAgICAgICAgIC8qIE1NSU8gcGFnZXMgbXVzdCBub3QgYmUgbWFwcGVkIGNh Y2hhYmxlIHVubGVzcyByZXF1ZXN0ZWQgc28uICovCisgICAgICAgICAgICBz d2l0Y2ggKCBvcHRfbW1pb19yZWxheCApCisgICAgICAgICAgICB7CisgICAg ICAgICAgICBjYXNlIDA6CisgICAgICAgICAgICAgICAgYnJlYWs7CisgICAg ICAgICAgICBjYXNlIDE6CisgICAgICAgICAgICAgICAgaWYgKCBpc19oYXJk d2FyZV9kb21haW4obDFlX293bmVyKSApCisgICAgICAgICAgICBjYXNlIC0x OgorICAgICAgICAgICAgICAgICAgICByZXR1cm4gMDsKKyAgICAgICAgICAg IGRlZmF1bHQ6CisgICAgICAgICAgICAgICAgQVNTRVJUX1VOUkVBQ0hBQkxF KCk7CisgICAgICAgICAgICB9CisgICAgICAgIH0KKyAgICAgICAgZWxzZSBp ZiAoIGwxZiAmIF9QQUdFX1JXICkKKyAgICAgICAgeworICAgICAgICAgICAg ZHByaW50ayhYRU5MT0dfR19XQVJOSU5HLAorICAgICAgICAgICAgICAgICAg ICAiZCVkOiBGb3JjaW5nIHJlYWQtb25seSBhY2Nlc3MgdG8gTUZOICVseFxu IiwKKyAgICAgICAgICAgICAgICAgICAgbDFlX293bmVyLT5kb21haW5faWQs IG1mbik7CisgICAgICAgICAgICBmbGlwID0gX1BBR0VfUlc7CisgICAgICAg IH0KKworICAgICAgICBzd2l0Y2ggKCBsMWYgJiBQQUdFX0NBQ0hFX0FUVFJT ICkKKyAgICAgICAgeworICAgICAgICBjYXNlIDA6IC8qIFdCICovCisgICAg ICAgICAgICBmbGlwIHw9IF9QQUdFX1BXVCB8IF9QQUdFX1BDRDsKKyAgICAg ICAgICAgIGJyZWFrOworICAgICAgICBjYXNlIF9QQUdFX1BXVDogLyogV1Qg Ki8KKyAgICAgICAgY2FzZSBfUEFHRV9QV1QgfCBfUEFHRV9QQVQ6IC8qIFdQ ICovCisgICAgICAgICAgICBmbGlwIHw9IF9QQUdFX1BDRCB8IChsMWYgJiBf UEFHRV9QQVQpOworICAgICAgICAgICAgYnJlYWs7CisgICAgICAgIH0KKwor ICAgICAgICByZXR1cm4gZmxpcDsKICAgICB9CiAKICAgICBpZiAoIHVubGlr ZWx5KCAocmVhbF9wZ19vd25lciAhPSBwZ19vd25lcikgJiYKQEAgLTExOTQs OCArMTIzNiw5IEBAIHN0YXRpYyBpbnQgYWxsb2NfbDFfdGFibGUoc3RydWN0 IHBhZ2VfaW4KICAgICAgICAgICAgICAgICBnb3RvIGZhaWw7CiAgICAgICAg ICAgICBjYXNlIDA6CiAgICAgICAgICAgICAgICAgYnJlYWs7Ci0gICAgICAg ICAgICBjYXNlIDE6Ci0gICAgICAgICAgICAgICAgbDFlX3JlbW92ZV9mbGFn cyhwbDFlW2ldLCBfUEFHRV9SVyk7CisgICAgICAgICAgICBjYXNlIF9QQUdF X1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6CisgICAgICAg ICAgICAgICAgQVNTRVJUKCEocmV0ICYgfihfUEFHRV9SVyB8IFBBR0VfQ0FD SEVfQVRUUlMpKSk7CisgICAgICAgICAgICAgICAgbDFlX2ZsaXBfZmxhZ3Mo cGwxZVtpXSwgcmV0KTsKICAgICAgICAgICAgICAgICBicmVhazsKICAgICAg ICAgICAgIH0KIApAQCAtMTY5MCw4ICsxNzMzLDkgQEAgc3RhdGljIGludCBt b2RfbDFfZW50cnkobDFfcGdlbnRyeV90ICpwbAogICAgICAgICAgICAgcmV0 dXJuIC1FSU5WQUw7CiAgICAgICAgIH0KIAotICAgICAgICAvKiBGYXN0IHBh dGggZm9yIGlkZW50aWNhbCBtYXBwaW5nLCByL3cgYW5kIHByZXNlbmNlLiAq LwotICAgICAgICBpZiAoICFsMWVfaGFzX2NoYW5nZWQob2wxZSwgbmwxZSwg X1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5UKSApCisgICAgICAgIC8qIEZhc3Qg cGF0aCBmb3IgaWRlbnRpY2FsIG1hcHBpbmcsIHIvdywgcHJlc2VuY2UsIGFu ZCBjYWNoYWJpbGl0eS4gKi8KKyAgICAgICAgaWYgKCAhbDFlX2hhc19jaGFu Z2VkKG9sMWUsIG5sMWUsCisgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICBQQUdFX0NBQ0hFX0FUVFJTIHwgX1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5U KSApCiAgICAgICAgIHsKICAgICAgICAgICAgIGFkanVzdF9ndWVzdF9sMWUo bmwxZSwgcHRfZG9tKTsKICAgICAgICAgICAgIGlmICggVVBEQVRFX0VOVFJZ KGwxLCBwbDFlLCBvbDFlLCBubDFlLCBnbDFtZm4sIHB0X3ZjcHUsCkBAIC0x NzE0LDggKzE3NTgsOSBAQCBzdGF0aWMgaW50IG1vZF9sMV9lbnRyeShsMV9w Z2VudHJ5X3QgKnBsCiAgICAgICAgICAgICByZXR1cm4gcmM7CiAgICAgICAg IGNhc2UgMDoKICAgICAgICAgICAgIGJyZWFrOwotICAgICAgICBjYXNlIDE6 Ci0gICAgICAgICAgICBsMWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JX KTsKKyAgICAgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0VfUlcgfCBQQUdF X0NBQ0hFX0FUVFJTOgorICAgICAgICAgICAgQVNTRVJUKCEocmMgJiB+KF9Q QUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUykpKTsKKyAgICAgICAgICAgIGwx ZV9mbGlwX2ZsYWdzKG5sMWUsIHJjKTsKICAgICAgICAgICAgIHJjID0gMDsK ICAgICAgICAgICAgIGJyZWFrOwogICAgICAgICB9CkBAIC00OTIwLDYgKzQ5 NjUsNyBAQCBzdGF0aWMgaW50IHB0d3JfZW11bGF0ZWRfdXBkYXRlKAogICAg IGwxX3BnZW50cnlfdCBwdGUsIG9sMWUsIG5sMWUsICpwbDFlOwogICAgIHN0 cnVjdCB2Y3B1ICp2ID0gY3VycmVudDsKICAgICBzdHJ1Y3QgZG9tYWluICpk ID0gdi0+ZG9tYWluOworICAgIGludCByZXQ7CiAKICAgICAvKiBPbmx5IGFs bG93IG5hdHVyYWxseS1hbGlnbmVkIHN0b3JlcyB3aXRoaW4gdGhlIG9yaWdp bmFsICVjcjIgcGFnZS4gKi8KICAgICBpZiAoIHVubGlrZWx5KCgoYWRkcl5w dHdyX2N0eHQtPmNyMikgJiBQQUdFX01BU0spIHx8IChhZGRyICYgKGJ5dGVz LTEpKSkgKQpAQCAtNDk2Nyw3ICs1MDEzLDcgQEAgc3RhdGljIGludCBwdHdy X2VtdWxhdGVkX3VwZGF0ZSgKIAogICAgIC8qIENoZWNrIHRoZSBuZXcgUFRF LiAqLwogICAgIG5sMWUgPSBsMWVfZnJvbV9pbnRwdGUodmFsKTsKLSAgICBz d2l0Y2ggKCBnZXRfcGFnZV9mcm9tX2wxZShubDFlLCBkLCBkKSApCisgICAg c3dpdGNoICggcmV0ID0gZ2V0X3BhZ2VfZnJvbV9sMWUobmwxZSwgZCwgZCkg KQogICAgIHsKICAgICBkZWZhdWx0OgogICAgICAgICBpZiAoIGlzX3B2XzMy Yml0X2RvbWFpbihkKSAmJiAoYnl0ZXMgPT0gNCkgJiYgKHVuYWxpZ25lZF9h ZGRyICYgNCkgJiYKQEAgLTQ5OTEsOCArNTAzNyw5IEBAIHN0YXRpYyBpbnQg cHR3cl9lbXVsYXRlZF91cGRhdGUoCiAgICAgICAgIGJyZWFrOwogICAgIGNh c2UgMDoKICAgICAgICAgYnJlYWs7Ci0gICAgY2FzZSAxOgotICAgICAgICBs MWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JXKTsKKyAgICBjYXNlIF9Q QUdFX1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6CisgICAg ICAgIEFTU0VSVCghKHJldCAmIH4oX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FU VFJTKSkpOworICAgICAgICBsMWVfZmxpcF9mbGFncyhubDFlLCByZXQpOwog ICAgICAgICBicmVhazsKICAgICB9CiAKLS0tIGEveGVuL2luY2x1ZGUvYXNt LXg4Ni9wYWdlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4Ni9wYWdlLmgK QEAgLTE1Nyw2ICsxNTcsOSBAQCBzdGF0aWMgaW5saW5lIGw0X3BnZW50cnlf dCBsNGVfZnJvbV9wYWRkCiAjZGVmaW5lIGwzZV9yZW1vdmVfZmxhZ3MoeCwg ZmxhZ3MpICgoeCkubDMgJj0gfnB1dF9wdGVfZmxhZ3MoZmxhZ3MpKQogI2Rl ZmluZSBsNGVfcmVtb3ZlX2ZsYWdzKHgsIGZsYWdzKSAoKHgpLmw0ICY9IH5w dXRfcHRlX2ZsYWdzKGZsYWdzKSkKIAorLyogRmxpcCBmbGFncyBpbiBhbiBl eGlzdGluZyBMMSBQVEUuICovCisjZGVmaW5lIGwxZV9mbGlwX2ZsYWdzKHgs IGZsYWdzKSAgICAoKHgpLmwxIF49IHB1dF9wdGVfZmxhZ3MoZmxhZ3MpKQor CiAvKiBDaGVjayBpZiBhIHB0ZSdzIHBhZ2UgbWFwcGluZyBvciBzaWduaWZp Y2FudCBhY2Nlc3MgZmxhZ3MgaGF2ZSBjaGFuZ2VkLiAqLwogI2RlZmluZSBs MWVfaGFzX2NoYW5nZWQoeCx5LGZsYWdzKSBcCiAgICAgKCAhISgoKHgpLmwx IF4gKHkpLmwxKSAmICgoUEFERFJfTUFTSyZQQUdFX01BU0spfHB1dF9wdGVf ZmxhZ3MoZmxhZ3MpKSkgKQo= --=separator Content-Type: application/octet-stream; name="xsa154-4.6.patch" Content-Disposition: attachment; filename="xsa154-4.6.patch" Content-Transfer-Encoding: base64 eDg2OiBlbmZvcmNlIGNvbnNpc3RlbnQgY2FjaGFiaWxpdHkgb2YgTU1JTyBt YXBwaW5ncwoKV2UndmUgYmVlbiB0b2xkIGJ5IEludGVsIHRoYXQgaW5jb25z aXN0ZW50IGNhY2hhYmlsaXR5IGJldHdlZW4KbXVsdGlwbGUgbWFwcGluZ3Mg b2YgdGhlIHNhbWUgcGFnZSBjYW4gYWZmZWN0IHN5c3RlbSBzdGFiaWxpdHkg b25seQp3aGVuIHRoZSBhZmZlY3RlZCBwYWdlIGlzIGFuIE1NSU8gb25lLiBT aW5jZSB0aGUgc3RhbGUgZGF0YSBpc3N1ZSBpcwpvZiBubyByZWxldmFuY2Ug dG8gdGhlIGh5cGVydmlzb3IgKHNpbmNlIGFsbCBndWVzdCBtZW1vcnkgYWNj ZXNzZXMgZ28KdGhyb3VnaCBwcm9wZXIgYWNjZXNzb3JzIGFuZCB2YWxpZGF0 aW9uKSwgaGFuZGxpbmcgb2YgUkFNIHBhZ2VzCnJlbWFpbnMgdW5jaGFuZ2Vk IGhlcmUuIEFueSBNTUlPIG1hcHBlZCBieSBkb21haW5zIGhvd2V2ZXIgbmVl ZHMgdG8gYmUKZG9uZSBjb25zaXN0ZW50bHkgKGFsbCBjYWNoYWJsZSBtYXBw aW5ncyBvciBhbGwgdW5jYWNoYWJsZSBvbmVzKSwgaW4Kb3JkZXIgdG8gYXZv aWQgTWFjaGluZSBDaGVjayBleGNlcHRpb25zLiBTaW5jZSBjb252ZXJ0aW5n IGV4aXN0aW5nCmNhY2hhYmxlIG1hcHBpbmdzIHRvIHVuY2FjaGFibGUgKGF0 IHRoZSB0aW1lIGFuIHVuY2FjaGFibGUgbWFwcGluZwpnZXRzIGVzdGFibGlz aGVkKSB3b3VsZCBpbiB0aGUgUFYgY2FzZSByZXF1aXJlIHRyYWNraW5nIGFs bCBtYXBwaW5ncywKYWxsb3cgTU1JTyB0byBvbmx5IGdldCBtYXBwZWQgdW5j YWNoYWJsZSAoVUMsIFVDLSwgb3IgV0MpLgoKVGhpcyBhbHNvIGltcGxpZXMg dGhhdCBpbiB0aGUgUFYgY2FzZSB3ZSBtdXN0bid0IHVzZSB0aGUgTDEgUFRF IHVwZGF0ZQpmYXN0IHBhdGggd2hlbiBjYWNoYWJpbGl0eSBmbGFncyBnZXQg YWx0ZXJlZC4KClNpbmNlIGluIHRoZSBIVk0gY2FzZSBhdCBsZWFzdCBmb3Ig bm93IHdlIHdhbnQgdG8gY29udGludWUgaG9ub3JpbmcKcGlubmVkIGNhY2hh YmlsaXR5IGF0dHJpYnV0ZXMgZm9yIHBhZ2VzIG5vdCBtYXBwZWQgYnkgdGhl IGh5cGVydmlzb3IsCnNwZWNpYWwgY2FzZSBoYW5kbGluZyBvZiByL28gTU1J TyBwYWdlcyAoZm9yY2luZyBVQykgZ2V0cyBhZGRlZCB0aGVyZS4KQXJndWFi bHkgdGhlIGNvdW50ZXJwYXJ0IGNoYW5nZSB0byBwMm0tcHQuYyBtYXkgbm90 IGJlIG5lY2Vzc2FyeSwgc2luY2UKVUMtICh3aGljaCBhbHJlYWR5IGdldHMg ZW5mb3JjZWQgdGhlcmUpIGlzIHByb2JhYmx5IHN0cmljdCBlbm91Z2guCgpO b3RlIHRoYXQgdGhlIHNoYWRvdyBjb2RlIGNoYW5nZXMgaW5jbHVkZSBmaXhp bmcgdGhlIHdyaXRlIHByb3RlY3Rpb24Kb2Ygci9vIE1NSU8gcmFuZ2VzOiBz aGFkb3dfbDFlX3JlbW92ZV9mbGFncygpIGFuZCBpdHMgc2libGluZ3MsIG90 aGVyCnRoYW4gbDFlX3JlbW92ZV9mbGFncygpIGFuZCBhbGlrZSwgcmV0dXJu IHRoZSBuZXcgUFRFIChhbmQgaGVuY2UKaWdub3JpbmcgdGhlaXIgcmV0dXJu IHZhbHVlcyBtYWtlcyB0aGVtIG5vLW9wcykuCgpUaGlzIGlzIENWRS0yMDE2 LTIyNzAgLyBYU0EtMTU0LgoKU2lnbmVkLW9mZi1ieTogSmFuIEJldWxpY2gg PGpiZXVsaWNoQHN1c2UuY29tPgpBY2tlZC1ieTogQW5kcmV3IENvb3BlciA8 YW5kcmV3LmNvb3BlcjNAY2l0cml4LmNvbT4KCi0tLSBhL2RvY3MvbWlzYy94 ZW4tY29tbWFuZC1saW5lLm1hcmtkb3duCisrKyBiL2RvY3MvbWlzYy94ZW4t Y29tbWFuZC1saW5lLm1hcmtkb3duCkBAIC0xMDgwLDYgKzEwODAsMTUgQEAg bGltaXQgaXMgaWdub3JlZCBieSBYZW4uCiAKIFNwZWNpZnkgaWYgdGhlIE1N Q29uZmlnIHNwYWNlIHNob3VsZCBiZSBlbmFibGVkLgogCisjIyMgbW1pby1y ZWxheAorPiBgPSA8Ym9vbGVhbj4gfCBhbGxgCisKKz4gRGVmYXVsdDogYGZh bHNlYAorCitCeSBkZWZhdWx0LCBkb21haW5zIG1heSBub3QgY3JlYXRlIGNh Y2hlZCBtYXBwaW5ncyB0byBNTUlPIHJlZ2lvbnMuCitUaGlzIG9wdGlvbiBy ZWxheGVzIHRoZSBjaGVjayBmb3IgRG9tYWluIDAgKG9yIHdoZW4gdXNpbmcg YGFsbGAsIGFsbCBQVgorZG9tYWlucyksIHRvIHBlcm1pdCB0aGUgdXNlIG9m IGNhY2hlYWJsZSBNTUlPIG1hcHBpbmdzLgorCiAjIyMgbXNpCiA+IGA9IDxi b29sZWFuPmAKIAotLS0gYS94ZW4vYXJjaC94ODYvaHZtL210cnIuYworKysg Yi94ZW4vYXJjaC94ODYvaHZtL210cnIuYwpAQCAtODA3LDggKzgwNywxNyBA QCBpbnQgZXB0ZV9nZXRfZW50cnlfZW10KHN0cnVjdCBkb21haW4gKmQsCiAg ICAgaWYgKCB2LT5kb21haW4gIT0gZCApCiAgICAgICAgIHYgPSBkLT52Y3B1 ID8gZC0+dmNwdVswXSA6IE5VTEw7CiAKLSAgICBpZiAoICFtZm5fdmFsaWQo bWZuX3gobWZuKSkgKQorICAgIGlmICggIW1mbl92YWxpZChtZm5feChtZm4p KSB8fAorICAgICAgICAgcmFuZ2VzZXRfY29udGFpbnNfcmFuZ2UobW1pb19y b19yYW5nZXMsIG1mbl94KG1mbiksCisgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICBtZm5feChtZm4pICsgKDFVTCA8PCBvcmRlcikgLSAxKSAp CisgICAgeworICAgICAgICAqaXBhdCA9IDE7CiAgICAgICAgIHJldHVybiBN VFJSX1RZUEVfVU5DQUNIQUJMRTsKKyAgICB9CisKKyAgICBpZiAoIHJhbmdl c2V0X292ZXJsYXBzX3JhbmdlKG1taW9fcm9fcmFuZ2VzLCBtZm5feChtZm4p LAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgbWZuX3gobWZu KSArICgxVUwgPDwgb3JkZXIpIC0gMSkgKQorICAgICAgICByZXR1cm4gLTE7 CiAKICAgICBzd2l0Y2ggKCBodm1fZ2V0X21lbV9waW5uZWRfY2FjaGVhdHRy KGQsIGdmbiwgb3JkZXIsICZ0eXBlKSApCiAgICAgewotLS0gYS94ZW4vYXJj aC94ODYvbW0vcDJtLXB0LmMKKysrIGIveGVuL2FyY2gveDg2L21tL3AybS1w dC5jCkBAIC0xMDcsNiArMTA3LDggQEAgc3RhdGljIHVuc2lnbmVkIGxvbmcg cDJtX3R5cGVfdG9fZmxhZ3MocAogICAgIGNhc2UgcDJtX21taW9fZGlyZWN0 OgogICAgICAgICBpZiAoICFyYW5nZXNldF9jb250YWluc19zaW5nbGV0b24o bW1pb19yb19yYW5nZXMsIG1mbl94KG1mbikpICkKICAgICAgICAgICAgIGZs YWdzIHw9IF9QQUdFX1JXOworICAgICAgICBlbHNlCisgICAgICAgICAgICBm bGFncyB8PSBfUEFHRV9QV1Q7CiAgICAgICAgIHJldHVybiBmbGFncyB8IFAy TV9CQVNFX0ZMQUdTIHwgX1BBR0VfUENEOwogICAgIH0KIH0KLS0tIGEveGVu L2FyY2gveDg2L21tL3NoYWRvdy9tdWx0aS5jCisrKyBiL3hlbi9hcmNoL3g4 Ni9tbS9zaGFkb3cvbXVsdGkuYwpAQCAtNTE5LDYgKzUxOSw3IEBAIF9zaF9w cm9wYWdhdGUoc3RydWN0IHZjcHUgKnYsCiAgICAgZ2ZuX3QgdGFyZ2V0X2dm biA9IGd1ZXN0X2wxZV9nZXRfZ2ZuKGd1ZXN0X2VudHJ5KTsKICAgICB1MzIg cGFzc190aHJ1X2ZsYWdzOwogICAgIHUzMiBnZmxhZ3MsIHNmbGFnczsKKyAg ICBib29sX3QgbW1pb19tZm47CiAKICAgICAvKiBXZSBkb24ndCBzaGFkb3cg UEFFIGwzcyAqLwogICAgIEFTU0VSVChHVUVTVF9QQUdJTkdfTEVWRUxTID4g MyB8fCBsZXZlbCAhPSAzKTsKQEAgLTU1OSw3ICs1NjAsMTAgQEAgX3NoX3By b3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwKICAgICAvLyBtZm4gbWVhbnMgdGhh dCB3ZSBjYW4gbm90IHVzZWZ1bGx5IHNoYWRvdyBhbnl0aGluZywgYW5kIHNv IHdlCiAgICAgLy8gcmV0dXJuIGVhcmx5LgogICAgIC8vCi0gICAgaWYgKCAh bWZuX3ZhbGlkKHRhcmdldF9tZm4pCisgICAgbW1pb19tZm4gPSAhbWZuX3Zh bGlkKHRhcmdldF9tZm4pCisgICAgICAgICAgICAgICB8fCAobGV2ZWwgPT0g MQorICAgICAgICAgICAgICAgICAgICYmIHBhZ2VfZ2V0X293bmVyKG1mbl90 b19wYWdlKHRhcmdldF9tZm4pKSA9PSBkb21faW8pOworICAgIGlmICggbW1p b19tZm4KICAgICAgICAgICYmICEobGV2ZWwgPT0gMSAmJiAoIXNoYWRvd19t b2RlX3JlZmNvdW50cyhkKQogICAgICAgICAgICAgICAgICAgICAgICAgICAg ICB8fCBwMm10ID09IHAybV9tbWlvX2RpcmVjdCkpICkKICAgICB7CkBAIC01 NzcsNyArNTgxLDcgQEAgX3NoX3Byb3BhZ2F0ZShzdHJ1Y3QgdmNwdSAqdiwK ICAgICAgICAgICAgICAgICAgICAgICAgX1BBR0VfUlcgfCBfUEFHRV9QUkVT RU5UKTsKICAgICBpZiAoIGd1ZXN0X3N1cHBvcnRzX254KHYpICkKICAgICAg ICAgcGFzc190aHJ1X2ZsYWdzIHw9IF9QQUdFX05YX0JJVDsKLSAgICBpZiAo ICFzaGFkb3dfbW9kZV9yZWZjb3VudHMoZCkgJiYgIW1mbl92YWxpZCh0YXJn ZXRfbWZuKSApCisgICAgaWYgKCBsZXZlbCA9PSAxICYmICFzaGFkb3dfbW9k ZV9yZWZjb3VudHMoZCkgJiYgbW1pb19tZm4gKQogICAgICAgICBwYXNzX3Ro cnVfZmxhZ3MgfD0gX1BBR0VfUEFUIHwgX1BBR0VfUENEIHwgX1BBR0VfUFdU OwogICAgIHNmbGFncyA9IGdmbGFncyAmIHBhc3NfdGhydV9mbGFnczsKIApA QCAtNjc2LDEwICs2ODAsMTQgQEAgX3NoX3Byb3BhZ2F0ZShzdHJ1Y3QgdmNw dSAqdiwKICAgICB9CiAKICAgICAvKiBSZWFkLW9ubHkgbWVtb3J5ICovCi0g ICAgaWYgKCBwMm1faXNfcmVhZG9ubHkocDJtdCkgfHwKLSAgICAgICAgIChw Mm10ID09IHAybV9tbWlvX2RpcmVjdCAmJgotICAgICAgICAgIHJhbmdlc2V0 X2NvbnRhaW5zX3NpbmdsZXRvbihtbWlvX3JvX3JhbmdlcywgbWZuX3godGFy Z2V0X21mbikpKSApCisgICAgaWYgKCBwMm1faXNfcmVhZG9ubHkocDJtdCkg KQogICAgICAgICBzZmxhZ3MgJj0gfl9QQUdFX1JXOworICAgIGVsc2UgaWYg KCBwMm10ID09IHAybV9tbWlvX2RpcmVjdCAmJgorICAgICAgICAgICAgICBy YW5nZXNldF9jb250YWluc19zaW5nbGV0b24obW1pb19yb19yYW5nZXMsIG1m bl94KHRhcmdldF9tZm4pKSApCisgICAgeworICAgICAgICBzZmxhZ3MgJj0g fihfUEFHRV9SVyB8IF9QQUdFX1BBVCk7CisgICAgICAgIHNmbGFncyB8PSBf UEFHRV9QQ0QgfCBfUEFHRV9QV1Q7CisgICAgfQogCiAgICAgLy8gcHJvdGVj dCBndWVzdCBwYWdlIHRhYmxlcwogICAgIC8vCkBAIC0xMTg1LDIyICsxMTkz LDI4IEBAIHN0YXRpYyBpbnQgc2hhZG93X3NldF9sMWUoc3RydWN0IGRvbWFp bgogICAgICAgICAgJiYgIXNoX2wxZV9pc19tYWdpYyhuZXdfc2wxZSkgKQog ICAgIHsKICAgICAgICAgLyogQWJvdXQgdG8gaW5zdGFsbCBhIG5ldyByZWZl cmVuY2UgKi8KLSAgICAgICAgaWYgKCBzaGFkb3dfbW9kZV9yZWZjb3VudHMo ZCkgKSB7CisgICAgICAgIGlmICggc2hhZG93X21vZGVfcmVmY291bnRzKGQp ICkKKyAgICAgICAgeworI2RlZmluZSBQQUdFX0ZMSVBQQUJMRSAoX1BBR0Vf UlcgfCBfUEFHRV9QV1QgfCBfUEFHRV9QQ0QgfCBfUEFHRV9QQVQpCisgICAg ICAgICAgICBpbnQgcmM7CisKICAgICAgICAgICAgIFRSQUNFX1NIQURPV19Q QVRIX0ZMQUcoVFJDRV9TRkxBR19TSEFET1dfTDFfR0VUX1JFRik7Ci0gICAg ICAgICAgICBzd2l0Y2ggKCBzaGFkb3dfZ2V0X3BhZ2VfZnJvbV9sMWUobmV3 X3NsMWUsIGQsIG5ld190eXBlKSApCisgICAgICAgICAgICBzd2l0Y2ggKCBy YyA9IHNoYWRvd19nZXRfcGFnZV9mcm9tX2wxZShuZXdfc2wxZSwgZCwgbmV3 X3R5cGUpICkKICAgICAgICAgICAgIHsKICAgICAgICAgICAgIGRlZmF1bHQ6 CiAgICAgICAgICAgICAgICAgLyogRG9lc24ndCBsb29rIGxpa2UgYSBwYWdl dGFibGUuICovCiAgICAgICAgICAgICAgICAgZmxhZ3MgfD0gU0hBRE9XX1NF VF9FUlJPUjsKICAgICAgICAgICAgICAgICBuZXdfc2wxZSA9IHNoYWRvd19s MWVfZW1wdHkoKTsKICAgICAgICAgICAgICAgICBicmVhazsKLSAgICAgICAg ICAgIGNhc2UgMToKLSAgICAgICAgICAgICAgICBzaGFkb3dfbDFlX3JlbW92 ZV9mbGFncyhuZXdfc2wxZSwgX1BBR0VfUlcpOworICAgICAgICAgICAgY2Fz ZSBQQUdFX0ZMSVBQQUJMRSAmIC1QQUdFX0ZMSVBQQUJMRSAuLi4gUEFHRV9G TElQUEFCTEU6CisgICAgICAgICAgICAgICAgQVNTRVJUKCEocmMgJiB+UEFH RV9GTElQUEFCTEUpKTsKKyAgICAgICAgICAgICAgICBuZXdfc2wxZSA9IHNo YWRvd19sMWVfZmxpcF9mbGFncyhuZXdfc2wxZSwgcmMpOwogICAgICAgICAg ICAgICAgIC8qIGZhbGwgdGhyb3VnaCAqLwogICAgICAgICAgICAgY2FzZSAw OgogICAgICAgICAgICAgICAgIHNoYWRvd192cmFtX2dldF9sMWUobmV3X3Ns MWUsIHNsMWUsIHNsMW1mbiwgZCk7CiAgICAgICAgICAgICAgICAgYnJlYWs7 CiAgICAgICAgICAgICB9CisjdW5kZWYgUEFHRV9GTElQUEFCTEUKICAgICAg ICAgfQogICAgIH0KIAotLS0gYS94ZW4vYXJjaC94ODYvbW0vc2hhZG93L3R5 cGVzLmgKKysrIGIveGVuL2FyY2gveDg2L21tL3NoYWRvdy90eXBlcy5oCkBA IC05OSw2ICs5OSw5IEBAIHN0YXRpYyBpbmxpbmUgdTMyIHNoYWRvd19sNGVf Z2V0X2ZsYWdzKHMKIHN0YXRpYyBpbmxpbmUgc2hhZG93X2wxZV90CiBzaGFk b3dfbDFlX3JlbW92ZV9mbGFncyhzaGFkb3dfbDFlX3Qgc2wxZSwgdTMyIGZs YWdzKQogeyBsMWVfcmVtb3ZlX2ZsYWdzKHNsMWUsIGZsYWdzKTsgcmV0dXJu IHNsMWU7IH0KK3N0YXRpYyBpbmxpbmUgc2hhZG93X2wxZV90CitzaGFkb3df bDFlX2ZsaXBfZmxhZ3Moc2hhZG93X2wxZV90IHNsMWUsIHUzMiBmbGFncykK K3sgbDFlX2ZsaXBfZmxhZ3Moc2wxZSwgZmxhZ3MpOyByZXR1cm4gc2wxZTsg fQogCiBzdGF0aWMgaW5saW5lIHNoYWRvd19sMWVfdCBzaGFkb3dfbDFlX2Vt cHR5KHZvaWQpCiB7IHJldHVybiBsMWVfZW1wdHkoKTsgfQotLS0gYS94ZW4v YXJjaC94ODYvbW0uYworKysgYi94ZW4vYXJjaC94ODYvbW0uYwpAQCAtMTc4 LDYgKzE3OCwxOCBAQCBzdGF0aWMgdWludDMyX3QgYmFzZV9kaXNhbGxvd19t YXNrOwogICAgICAgaXNfcHZfZG9tYWluKGQpKSA/ICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgIFwKICAgICAgTDFfRElTQUxMT1df TUFTSyA6IChMMV9ESVNBTExPV19NQVNLICYgflBBR0VfQ0FDSEVfQVRUUlMp KQogCitzdGF0aWMgczggX19yZWFkX21vc3RseSBvcHRfbW1pb19yZWxheDsK K3N0YXRpYyB2b2lkIF9faW5pdCBwYXJzZV9tbWlvX3JlbGF4KGNvbnN0IGNo YXIgKnMpCit7CisgICAgaWYgKCAhKnMgKQorICAgICAgICBvcHRfbW1pb19y ZWxheCA9IDE7CisgICAgZWxzZQorICAgICAgICBvcHRfbW1pb19yZWxheCA9 IHBhcnNlX2Jvb2wocyk7CisgICAgaWYgKCBvcHRfbW1pb19yZWxheCA8IDAg JiYgc3RyY21wKHMsICJhbGwiKSApCisgICAgICAgIG9wdF9tbWlvX3JlbGF4 ID0gMDsKK30KK2N1c3RvbV9wYXJhbSgibW1pby1yZWxheCIsIHBhcnNlX21t aW9fcmVsYXgpOworCiBzdGF0aWMgdm9pZCBfX2luaXQgaW5pdF9mcmFtZXRh YmxlX2NodW5rKHZvaWQgKnN0YXJ0LCB2b2lkICplbmQpCiB7CiAgICAgdW5z aWduZWQgbG9uZyBzID0gKHVuc2lnbmVkIGxvbmcpc3RhcnQ7CkBAIC03OTks MTAgKzgxMSw3IEBAIGdldF9wYWdlX2Zyb21fbDFlKAogICAgIGlmICggIW1m bl92YWxpZChtZm4pIHx8CiAgICAgICAgICAocmVhbF9wZ19vd25lciA9IHBh Z2VfZ2V0X293bmVyX2FuZF9yZWZlcmVuY2UocGFnZSkpID09IGRvbV9pbyAp CiAgICAgewotI2lmbmRlZiBOREVCVUcKLSAgICAgICAgY29uc3QgdW5zaWdu ZWQgbG9uZyAqcm9fbWFwOwotICAgICAgICB1bnNpZ25lZCBpbnQgc2VnLCBi ZGY7Ci0jZW5kaWYKKyAgICAgICAgaW50IGZsaXAgPSAwOwogCiAgICAgICAg IC8qIE9ubHkgbmVlZGVkIHRoZSByZWZlcmVuY2UgdG8gY29uZmlybSBkb21f aW8gb3duZXJzaGlwLiAqLwogICAgICAgICBpZiAoIG1mbl92YWxpZChtZm4p ICkKQEAgLTgzNiwyNCArODQ1LDU1IEBAIGdldF9wYWdlX2Zyb21fbDFlKAog ICAgICAgICAgICAgcmV0dXJuIC1FSU5WQUw7CiAgICAgICAgIH0KIAotICAg ICAgICBpZiAoICEobDFmICYgX1BBR0VfUlcpIHx8Ci0gICAgICAgICAgICAg IXJhbmdlc2V0X2NvbnRhaW5zX3NpbmdsZXRvbihtbWlvX3JvX3Jhbmdlcywg bWZuKSApCi0gICAgICAgICAgICByZXR1cm4gMDsKKyAgICAgICAgaWYgKCAh cmFuZ2VzZXRfY29udGFpbnNfc2luZ2xldG9uKG1taW9fcm9fcmFuZ2VzLCBt Zm4pICkKKyAgICAgICAgeworICAgICAgICAgICAgLyogTU1JTyBwYWdlcyBt dXN0IG5vdCBiZSBtYXBwZWQgY2FjaGFibGUgdW5sZXNzIHJlcXVlc3RlZCBz by4gKi8KKyAgICAgICAgICAgIHN3aXRjaCAoIG9wdF9tbWlvX3JlbGF4ICkK KyAgICAgICAgICAgIHsKKyAgICAgICAgICAgIGNhc2UgMDoKKyAgICAgICAg ICAgICAgICBicmVhazsKKyAgICAgICAgICAgIGNhc2UgMToKKyAgICAgICAg ICAgICAgICBpZiAoIGlzX2hhcmR3YXJlX2RvbWFpbihsMWVfb3duZXIpICkK KyAgICAgICAgICAgIGNhc2UgLTE6CisgICAgICAgICAgICAgICAgICAgIHJl dHVybiAwOworICAgICAgICAgICAgZGVmYXVsdDoKKyAgICAgICAgICAgICAg ICBBU1NFUlRfVU5SRUFDSEFCTEUoKTsKKyAgICAgICAgICAgIH0KKyAgICAg ICAgfQorICAgICAgICBlbHNlIGlmICggbDFmICYgX1BBR0VfUlcgKQorICAg ICAgICB7CiAjaWZuZGVmIE5ERUJVRwotICAgICAgICBpZiAoICFwY2lfbW1j ZmdfZGVjb2RlKG1mbiwgJnNlZywgJmJkZikgfHwKLSAgICAgICAgICAgICAo KHJvX21hcCA9IHBjaV9nZXRfcm9fbWFwKHNlZykpICE9IE5VTEwgJiYKLSAg ICAgICAgICAgICAgdGVzdF9iaXQoYmRmLCByb19tYXApKSApCi0gICAgICAg ICAgICBwcmludGsoWEVOTE9HX0dfV0FSTklORwotICAgICAgICAgICAgICAg ICAgICJkJWQ6IEZvcmNpbmcgcmVhZC1vbmx5IGFjY2VzcyB0byBNRk4gJWx4 XG4iLAotICAgICAgICAgICAgICAgICAgIGwxZV9vd25lci0+ZG9tYWluX2lk LCBtZm4pOwotICAgICAgICBlbHNlCi0gICAgICAgICAgICByYW5nZXNldF9y ZXBvcnRfcmFuZ2VzKG1taW9fcm9fcmFuZ2VzLCAwLCB+MFVMLAotICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICBwcmludF9tbWlvX2VtdWxf cmFuZ2UsCi0gICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICYo c3RydWN0IG1taW9fZW11bF9yYW5nZV9jdHh0KXsKLSAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgLmQgPSBsMWVfb3duZXIsCi0gICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC5tZm4gPSBtZm4g fSk7CisgICAgICAgICAgICBjb25zdCB1bnNpZ25lZCBsb25nICpyb19tYXA7 CisgICAgICAgICAgICB1bnNpZ25lZCBpbnQgc2VnLCBiZGY7CisKKyAgICAg ICAgICAgIGlmICggIXBjaV9tbWNmZ19kZWNvZGUobWZuLCAmc2VnLCAmYmRm KSB8fAorICAgICAgICAgICAgICAgICAoKHJvX21hcCA9IHBjaV9nZXRfcm9f bWFwKHNlZykpICE9IE5VTEwgJiYKKyAgICAgICAgICAgICAgICAgIHRlc3Rf Yml0KGJkZiwgcm9fbWFwKSkgKQorICAgICAgICAgICAgICAgIHByaW50ayhY RU5MT0dfR19XQVJOSU5HCisgICAgICAgICAgICAgICAgICAgICAgICJkJWQ6 IEZvcmNpbmcgcmVhZC1vbmx5IGFjY2VzcyB0byBNRk4gJWx4XG4iLAorICAg ICAgICAgICAgICAgICAgICAgICBsMWVfb3duZXItPmRvbWFpbl9pZCwgbWZu KTsKKyAgICAgICAgICAgIGVsc2UKKyAgICAgICAgICAgICAgICByYW5nZXNl dF9yZXBvcnRfcmFuZ2VzKG1taW9fcm9fcmFuZ2VzLCAwLCB+MFVMLAorICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgcHJpbnRfbW1p b19lbXVsX3JhbmdlLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgJihzdHJ1Y3QgbW1pb19lbXVsX3JhbmdlX2N0eHQpeworICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIC5kID0g bDFlX293bmVyLAorICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgICAgIC5tZm4gPSBtZm4gfSk7CiAjZW5kaWYKLSAgICAgICAgcmV0 dXJuIDE7CisgICAgICAgICAgICBmbGlwID0gX1BBR0VfUlc7CisgICAgICAg IH0KKworICAgICAgICBzd2l0Y2ggKCBsMWYgJiBQQUdFX0NBQ0hFX0FUVFJT ICkKKyAgICAgICAgeworICAgICAgICBjYXNlIDA6IC8qIFdCICovCisgICAg ICAgICAgICBmbGlwIHw9IF9QQUdFX1BXVCB8IF9QQUdFX1BDRDsKKyAgICAg ICAgICAgIGJyZWFrOworICAgICAgICBjYXNlIF9QQUdFX1BXVDogLyogV1Qg Ki8KKyAgICAgICAgY2FzZSBfUEFHRV9QV1QgfCBfUEFHRV9QQVQ6IC8qIFdQ ICovCisgICAgICAgICAgICBmbGlwIHw9IF9QQUdFX1BDRCB8IChsMWYgJiBf UEFHRV9QQVQpOworICAgICAgICAgICAgYnJlYWs7CisgICAgICAgIH0KKwor ICAgICAgICByZXR1cm4gZmxpcDsKICAgICB9CiAKICAgICBpZiAoIHVubGlr ZWx5KCAocmVhbF9wZ19vd25lciAhPSBwZ19vd25lcikgJiYKQEAgLTEyNDMs OCArMTI4Myw5IEBAIHN0YXRpYyBpbnQgYWxsb2NfbDFfdGFibGUoc3RydWN0 IHBhZ2VfaW4KICAgICAgICAgICAgICAgICBnb3RvIGZhaWw7CiAgICAgICAg ICAgICBjYXNlIDA6CiAgICAgICAgICAgICAgICAgYnJlYWs7Ci0gICAgICAg ICAgICBjYXNlIDE6Ci0gICAgICAgICAgICAgICAgbDFlX3JlbW92ZV9mbGFn cyhwbDFlW2ldLCBfUEFHRV9SVyk7CisgICAgICAgICAgICBjYXNlIF9QQUdF X1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6CisgICAgICAg ICAgICAgICAgQVNTRVJUKCEocmV0ICYgfihfUEFHRV9SVyB8IFBBR0VfQ0FD SEVfQVRUUlMpKSk7CisgICAgICAgICAgICAgICAgbDFlX2ZsaXBfZmxhZ3Mo cGwxZVtpXSwgcmV0KTsKICAgICAgICAgICAgICAgICBicmVhazsKICAgICAg ICAgICAgIH0KIApAQCAtMTc1OSw4ICsxODAwLDkgQEAgc3RhdGljIGludCBt b2RfbDFfZW50cnkobDFfcGdlbnRyeV90ICpwbAogICAgICAgICAgICAgcmV0 dXJuIC1FSU5WQUw7CiAgICAgICAgIH0KIAotICAgICAgICAvKiBGYXN0IHBh dGggZm9yIGlkZW50aWNhbCBtYXBwaW5nLCByL3cgYW5kIHByZXNlbmNlLiAq LwotICAgICAgICBpZiAoICFsMWVfaGFzX2NoYW5nZWQob2wxZSwgbmwxZSwg X1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5UKSApCisgICAgICAgIC8qIEZhc3Qg cGF0aCBmb3IgaWRlbnRpY2FsIG1hcHBpbmcsIHIvdywgcHJlc2VuY2UsIGFu ZCBjYWNoYWJpbGl0eS4gKi8KKyAgICAgICAgaWYgKCAhbDFlX2hhc19jaGFu Z2VkKG9sMWUsIG5sMWUsCisgICAgICAgICAgICAgICAgICAgICAgICAgICAg ICBQQUdFX0NBQ0hFX0FUVFJTIHwgX1BBR0VfUlcgfCBfUEFHRV9QUkVTRU5U KSApCiAgICAgICAgIHsKICAgICAgICAgICAgIGFkanVzdF9ndWVzdF9sMWUo bmwxZSwgcHRfZG9tKTsKICAgICAgICAgICAgIGlmICggVVBEQVRFX0VOVFJZ KGwxLCBwbDFlLCBvbDFlLCBubDFlLCBnbDFtZm4sIHB0X3ZjcHUsCkBAIC0x NzgzLDggKzE4MjUsOSBAQCBzdGF0aWMgaW50IG1vZF9sMV9lbnRyeShsMV9w Z2VudHJ5X3QgKnBsCiAgICAgICAgICAgICByZXR1cm4gcmM7CiAgICAgICAg IGNhc2UgMDoKICAgICAgICAgICAgIGJyZWFrOwotICAgICAgICBjYXNlIDE6 Ci0gICAgICAgICAgICBsMWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JX KTsKKyAgICAgICAgY2FzZSBfUEFHRV9SVyAuLi4gX1BBR0VfUlcgfCBQQUdF X0NBQ0hFX0FUVFJTOgorICAgICAgICAgICAgQVNTRVJUKCEocmMgJiB+KF9Q QUdFX1JXIHwgUEFHRV9DQUNIRV9BVFRSUykpKTsKKyAgICAgICAgICAgIGwx ZV9mbGlwX2ZsYWdzKG5sMWUsIHJjKTsKICAgICAgICAgICAgIHJjID0gMDsK ICAgICAgICAgICAgIGJyZWFrOwogICAgICAgICB9CkBAIC01MDAwLDYgKzUw NDMsNyBAQCBzdGF0aWMgaW50IHB0d3JfZW11bGF0ZWRfdXBkYXRlKAogICAg IGwxX3BnZW50cnlfdCBwdGUsIG9sMWUsIG5sMWUsICpwbDFlOwogICAgIHN0 cnVjdCB2Y3B1ICp2ID0gY3VycmVudDsKICAgICBzdHJ1Y3QgZG9tYWluICpk ID0gdi0+ZG9tYWluOworICAgIGludCByZXQ7CiAKICAgICAvKiBPbmx5IGFs bG93IG5hdHVyYWxseS1hbGlnbmVkIHN0b3JlcyB3aXRoaW4gdGhlIG9yaWdp bmFsICVjcjIgcGFnZS4gKi8KICAgICBpZiAoIHVubGlrZWx5KCgoYWRkcl5w dHdyX2N0eHQtPmNyMikgJiBQQUdFX01BU0spIHx8IChhZGRyICYgKGJ5dGVz LTEpKSkgKQpAQCAtNTA0Nyw3ICs1MDkxLDcgQEAgc3RhdGljIGludCBwdHdy X2VtdWxhdGVkX3VwZGF0ZSgKIAogICAgIC8qIENoZWNrIHRoZSBuZXcgUFRF LiAqLwogICAgIG5sMWUgPSBsMWVfZnJvbV9pbnRwdGUodmFsKTsKLSAgICBz d2l0Y2ggKCBnZXRfcGFnZV9mcm9tX2wxZShubDFlLCBkLCBkKSApCisgICAg c3dpdGNoICggcmV0ID0gZ2V0X3BhZ2VfZnJvbV9sMWUobmwxZSwgZCwgZCkg KQogICAgIHsKICAgICBkZWZhdWx0OgogICAgICAgICBpZiAoIGlzX3B2XzMy Yml0X2RvbWFpbihkKSAmJiAoYnl0ZXMgPT0gNCkgJiYgKHVuYWxpZ25lZF9h ZGRyICYgNCkgJiYKQEAgLTUwNzEsOCArNTExNSw5IEBAIHN0YXRpYyBpbnQg cHR3cl9lbXVsYXRlZF91cGRhdGUoCiAgICAgICAgIGJyZWFrOwogICAgIGNh c2UgMDoKICAgICAgICAgYnJlYWs7Ci0gICAgY2FzZSAxOgotICAgICAgICBs MWVfcmVtb3ZlX2ZsYWdzKG5sMWUsIF9QQUdFX1JXKTsKKyAgICBjYXNlIF9Q QUdFX1JXIC4uLiBfUEFHRV9SVyB8IFBBR0VfQ0FDSEVfQVRUUlM6CisgICAg ICAgIEFTU0VSVCghKHJldCAmIH4oX1BBR0VfUlcgfCBQQUdFX0NBQ0hFX0FU VFJTKSkpOworICAgICAgICBsMWVfZmxpcF9mbGFncyhubDFlLCByZXQpOwog ICAgICAgICBicmVhazsKICAgICB9CiAKLS0tIGEveGVuL2luY2x1ZGUvYXNt LXg4Ni9wYWdlLmgKKysrIGIveGVuL2luY2x1ZGUvYXNtLXg4Ni9wYWdlLmgK QEAgLTE1Nyw2ICsxNTcsOSBAQCBzdGF0aWMgaW5saW5lIGw0X3BnZW50cnlf dCBsNGVfZnJvbV9wYWRkCiAjZGVmaW5lIGwzZV9yZW1vdmVfZmxhZ3MoeCwg ZmxhZ3MpICgoeCkubDMgJj0gfnB1dF9wdGVfZmxhZ3MoZmxhZ3MpKQogI2Rl ZmluZSBsNGVfcmVtb3ZlX2ZsYWdzKHgsIGZsYWdzKSAoKHgpLmw0ICY9IH5w dXRfcHRlX2ZsYWdzKGZsYWdzKSkKIAorLyogRmxpcCBmbGFncyBpbiBhbiBl eGlzdGluZyBMMSBQVEUuICovCisjZGVmaW5lIGwxZV9mbGlwX2ZsYWdzKHgs IGZsYWdzKSAgICAoKHgpLmwxIF49IHB1dF9wdGVfZmxhZ3MoZmxhZ3MpKQor CiAvKiBDaGVjayBpZiBhIHB0ZSdzIHBhZ2UgbWFwcGluZyBvciBzaWduaWZp Y2FudCBhY2Nlc3MgZmxhZ3MgaGF2ZSBjaGFuZ2VkLiAqLwogI2RlZmluZSBs MWVfaGFzX2NoYW5nZWQoeCx5LGZsYWdzKSBcCiAgICAgKCAhISgoKHgpLmwx IF4gKHkpLmwxKSAmICgoUEFERFJfTUFTSyZQQUdFX01BU0spfHB1dF9wdGVf ZmxhZ3MoZmxhZ3MpKSkgKQo= --=separator Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce --=separator-- From xen-announce-bounces@lists.xen.org Wed Feb 17 12:29:10 2016 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 17 Feb 2016 12:29:10 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1DO-0003dr-SY; Wed, 17 Feb 2016 12:28:18 +0000 Received: from mail6.bemta14.messagelabs.com ([193.109.254.103]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1DN-0003ci-5i; Wed, 17 Feb 2016 12:28:17 +0000 Received: from [193.109.254.147] by server-11.bemta-14.messagelabs.com id B0/9E-28228-06764C65; Wed, 17 Feb 2016 12:28:16 +0000 X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-9.tower-27.messagelabs.com!1455712094!24465780!1 X-Originating-IP: [50.57.168.107] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 7.35.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 17947 invoked from network); 17 Feb 2016 12:28:15 -0000 Received: from 50-57-168-107.static.cloud-ips.com (HELO mail.xen.org) (50.57.168.107) by server-9.tower-27.messagelabs.com with AES256-SHA encrypted SMTP; 17 Feb 2016 12:28:15 -0000 Received: from xenbits.xenproject.org ([50.57.170.242] helo=xenbits.xen.org) by mail.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1Et-0004LK-IP; Wed, 17 Feb 2016 12:29:51 +0000 Received: from iwj by xenbits.xen.org with local (Exim 4.84) (envelope-from ) id 1aW1DA-00065m-A8; Wed, 17 Feb 2016 12:28:04 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Wed, 17 Feb 2016 12:28:04 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 170 (CVE-2016-2271) - VMX: guest user mode may crash guest with non-canonical RIP X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2016-2271 / XSA-170 version 3 VMX: guest user mode may crash guest with non-canonical RIP UPDATES IN VERSION 3 ==================== Public release. ISSUE DESCRIPTION ================= VMX refuses attempts to enter a guest with an instruction pointer which doesn't satisfy certain requirements. In particular, the instruction pointer needs to be canonical when entering a guest currently in 64-bit mode. This is the case even if the VM entry information specifies an exception to be injected immediately (in which case the bad instruction pointer would possibly never get used for other than pushing onto the exception handler's stack). Provided the guest OS allows user mode to map the virtual memory space immediately below the canonical/non- canonical address boundary, a non-canonical instruction pointer can result even from normal user mode execution. VM entry failure, however, is fatal to the guest. IMPACT ====== Malicious HVM guest user mode code may be able to crash the guest. VULNERABLE SYSTEMS ================== All Xen versions are affected. Only systems using Intel or Cyrix CPUs are affected. ARM and AMD systems are unaffected. Only HVM guests are affected. MITIGATION ========== Running only PV guests will avoid this vulnerability. Running HVM guests on only AMD hardware will also avoid this vulnerability. CREDITS ======= This issue was discovered by Ling Liu of Qihoo 360 Inc. RESOLUTION ========== Applying the appropriate attached patch works around this issue. Note that it does so in a way which isn't architecturally correct, but no better solution has been found (nor suggested by Intel). xsa170.patch xen-unstable, Xen 4.6.x xsa170-4.5.patch Xen 4.5.x, Xen 4.4.x xsa170-4.3.patch Xen 4.3.x $ sha256sum xsa170* 77b4b14b2c93da5f68e724cf74e1616f7df2e78305f66d164b3de2d980221a9a xsa170.patch b35679bf7a35615d827efafff8d13c35ceec1184212e3c8ba110722b9ae8426f xsa170-4.3.patch 1df068fb439c7edc1e86dfa9ea3b9ae99b58cdc3ac874b96cdf63b26ef9a6b98 xsa170-4.5.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJWxGa0AAoJEIP+FMlX6CvZ3rkIAIo+pvKqkNbHjalgGpP4BVe7 +7tuVnL74wt5Dt4AuOFyPLnEaHbp5UkIKK++eP/urFCz5+/LbOqcWnfiQdWMLQ/t 17NX2CMSYUCwUAkMMjvbKvGM3W8AJ85naIQho9KQSPbY1/Q51jDS5bLT06B2iRr4 njML2ii2OhOTGAvC2XmnidFNvLGQxlfeeC75O9dbCFENSYn5WbdmHonTnK8qm22H eEvLlzg4D6yAmEaqHHZJ3bz1qtTw5FDNm/0tdZ1LO7lMuK01nMHSMmWG/Agc7219 lQH22N0+YTtgQKf65QciEThEnvTeDpeq84m64GqVhwzwssl1JrywrSsVkaQOnKA= =Ca+d -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa170.patch" Content-Disposition: attachment; filename="xsa170.patch" Content-Transfer-Encoding: base64 eDg2L1ZNWDogc2FuaXRpemUgcklQIGJlZm9yZSByZS1lbnRlcmluZyBndWVz dAoKLi4uIHRvIHByZXZlbnQgZ3Vlc3QgdXNlciBtb2RlIGFycmFuZ2luZyBm b3IgYSBndWVzdCBjcmFzaCAoZHVlIHRvCmZhaWxlZCBWTSBlbnRyeSkuIChP biB0aGUgQU1EIHN5c3RlbSBJIGNoZWNrZWQsIGhhcmR3YXJlIGlzIGRvaW5n CmV4YWN0bHkgdGhlIGNhbm9uaWNhbGl6YXRpb24gYmVpbmcgYWRkZWQgaGVy ZS4pCgpOb3RlIHRoYXQgZml4aW5nIHRoaXMgaW4gYW4gYXJjaGl0ZWN0dXJh bGx5IGNvcnJlY3Qgd2F5IHdvdWxkIGJlIHF1aXRlCmEgYml0IG1vcmUgaW52 b2x2ZWQ6IE1ha2luZyB0aGUgeDg2IGluc3RydWN0aW9uIGVtdWxhdG9yIGNo ZWNrIGFsbApicmFuY2ggdGFyZ2V0cyBmb3IgdmFsaWRpdHksIHBsdXMgZGVh bGluZyB3aXRoIGludmFsaWQgcklQIHJlc3VsdGluZwpmcm9tIHVwZGF0ZV9n dWVzdF9laXAoKSBvciBpbmNvbWluZyBkaXJlY3RseSBkdXJpbmcgYSBWTSBl eGl0LiBUaGUgb25seQp3YXkgdG8gZ2V0IHRoZSBsYXR0ZXIgcmlnaHQgd291 bGQgYmUgYnkgbm90IGhhdmluZyBoYXJkd2FyZSBkbyB0aGUKaW5qZWN0aW9u LgoKTm90ZSBmdXJ0aGVyIHRoYXQgdGhlcmUgYXJlIGEgdHdvIGVhcmx5IHJl dHVybnMgZnJvbQp2bXhfdm1leGl0X2hhbmRsZXIoKTogT25lICh0aHJvdWdo IHZteF9mYWlsZWRfdm1lbnRyeSgpKSBsZWFkcyB0bwpkb21haW5fY3Jhc2go KSBhbnl3YXksIGFuZCB0aGUgb3RoZXIgY292ZXJzIHJlYWwgbW9kZSBvbmx5 IGFuZCBjYW4KbmVpdGhlciBvY2N1ciB3aXRoIGEgbm9uLWNhbm9uaWNhbCBy SVAgbm9yIHJlc3VsdCBpbiBhbiBhbHRlcmVkIHJJUCwKc28gd2UgZG9uJ3Qg bmVlZCB0byBmb3JjZSB0aG9zZSBwYXRocyB0aHJvdWdoIHRoZSBjaGVja2lu ZyBsb2dpYy4KClRoaXMgaXMgWFNBLTE3MC4KClJlcG9ydGVkLWJ5OiDliJjk u6QgPGxpdWxpbmctaXRAMzYwLmNuPgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1 bGljaCA8amJldWxpY2hAc3VzZS5jb20+ClJldmlld2VkLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpUZXN0ZWQtYnk6 IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29wZXIzQGNpdHJpeC5jb20+Cgot LS0gYS94ZW4vYXJjaC94ODYvaHZtL3ZteC92bXguYworKysgYi94ZW4vYXJj aC94ODYvaHZtL3ZteC92bXguYwpAQCAtMjk2OCw3ICsyOTY4LDcgQEAgc3Rh dGljIGludCB2bXhfaGFuZGxlX2FwaWNfd3JpdGUodm9pZCkKIHZvaWQgdm14 X3ZtZXhpdF9oYW5kbGVyKHN0cnVjdCBjcHVfdXNlcl9yZWdzICpyZWdzKQog ewogICAgIHVuc2lnbmVkIGxvbmcgZXhpdF9xdWFsaWZpY2F0aW9uLCBleGl0 X3JlYXNvbiwgaWR0dl9pbmZvLCBpbnRyX2luZm8gPSAwOwotICAgIHVuc2ln bmVkIGludCB2ZWN0b3IgPSAwOworICAgIHVuc2lnbmVkIGludCB2ZWN0b3Ig PSAwLCBtb2RlOwogICAgIHN0cnVjdCB2Y3B1ICp2ID0gY3VycmVudDsKIAog ICAgIF9fdm1yZWFkKEdVRVNUX1JJUCwgICAgJnJlZ3MtPnJpcCk7CkBAIC0z NTY2LDYgKzM1NjYsNDEgQEAgdm9pZCB2bXhfdm1leGl0X2hhbmRsZXIoc3Ry dWN0IGNwdV91c2VyXwogb3V0OgogICAgIGlmICggbmVzdGVkaHZtX3ZjcHVf aW5fZ3Vlc3Rtb2RlKHYpICkKICAgICAgICAgbnZteF9pZHR2X2hhbmRsaW5n KCk7CisKKyAgICAvKgorICAgICAqIFZNIGVudHJ5IHdpbGwgZmFpbCAoY2F1 c2luZyB0aGUgZ3Vlc3QgdG8gZ2V0IGNyYXNoZWQpIGlmIHJJUCAoYW5kCisg ICAgICogckZMQUdTLCBidXQgd2UgZG9uJ3QgaGF2ZSBhbiBpc3N1ZSB0aGVy ZSkgZG9lc24ndCBtZWV0IGNlcnRhaW4KKyAgICAgKiBjcml0ZXJpYS4gQXMg d2UgbXVzdCBub3QgYWxsb3cgbGVzcyB0aGFuIGZ1bGx5IHByaXZpbGVnZWQg bW9kZSB0byBoYXZlCisgICAgICogc3VjaCBhbiBlZmZlY3Qgb24gdGhlIGRv bWFpbiwgd2UgY29ycmVjdCBySVAgaW4gdGhhdCBjYXNlIChhY2NlcHRpbmcK KyAgICAgKiB0aGlzIG5vdCBiZWluZyBhcmNoaXRlY3R1cmFsbHkgY29ycmVj dCBiZWhhdmlvciwgYXMgdGhlIGluamVjdGVkICNHUAorICAgICAqIGZhdWx0 IHdpbGwgdGhlbiBub3Qgc2VlIHRoZSBjb3JyZWN0IFtpbnZhbGlkXSByZXR1 cm4gYWRkcmVzcykuCisgICAgICogQW5kIHNpbmNlIHdlIGtub3cgdGhlIGd1 ZXN0IHdpbGwgY3Jhc2gsIHdlIGNyYXNoIGl0IHJpZ2h0IGF3YXkgaWYgaXQK KyAgICAgKiBhbHJlYWR5IGlzIGluIG1vc3QgcHJpdmlsZWdlZCBtb2RlLgor ICAgICAqLworICAgIG1vZGUgPSB2bXhfZ3Vlc3RfeDg2X21vZGUodik7Cisg ICAgaWYgKCBtb2RlID09IDggPyAhaXNfY2Fub25pY2FsX2FkZHJlc3MocmVn cy0+cmlwKQorICAgICAgICAgICAgICAgICAgIDogcmVncy0+cmlwICE9IHJl Z3MtPl9laXAgKQorICAgIHsKKyAgICAgICAgc3RydWN0IHNlZ21lbnRfcmVn aXN0ZXIgc3M7CisKKyAgICAgICAgZ3ByaW50ayhYRU5MT0dfV0FSTklORywg IkJhZCBySVAgJWx4IGZvciBtb2RlICV1XG4iLCByZWdzLT5yaXAsIG1vZGUp OworCisgICAgICAgIHZteF9nZXRfc2VnbWVudF9yZWdpc3Rlcih2LCB4ODZf c2VnX3NzLCAmc3MpOworICAgICAgICBpZiAoIHNzLmF0dHIuZmllbGRzLmRw bCApCisgICAgICAgIHsKKyAgICAgICAgICAgIF9fdm1yZWFkKFZNX0VOVFJZ X0lOVFJfSU5GTywgJmludHJfaW5mbyk7CisgICAgICAgICAgICBpZiAoICEo aW50cl9pbmZvICYgSU5UUl9JTkZPX1ZBTElEX01BU0spICkKKyAgICAgICAg ICAgICAgICBodm1faW5qZWN0X2h3X2V4Y2VwdGlvbihUUkFQX2dwX2ZhdWx0 LCAwKTsKKyAgICAgICAgICAgIC8qIE5lZWQgdG8gZml4IHJJUCBuZXZlcnRo ZWxlc3MuICovCisgICAgICAgICAgICBpZiAoIG1vZGUgPT0gOCApCisgICAg ICAgICAgICAgICAgcmVncy0+cmlwID0gKGxvbmcpKHJlZ3MtPnJpcCA8PCAo NjQgLSBWQUREUl9CSVRTKSkgPj4KKyAgICAgICAgICAgICAgICAgICAgICAg ICAgICAoNjQgLSBWQUREUl9CSVRTKTsKKyAgICAgICAgICAgIGVsc2UKKyAg ICAgICAgICAgICAgICByZWdzLT5yaXAgPSByZWdzLT5fZWlwOworICAgICAg ICB9CisgICAgICAgIGVsc2UKKyAgICAgICAgICAgIGRvbWFpbl9jcmFzaCh2 LT5kb21haW4pOworICAgIH0KIH0KIAogdm9pZCB2bXhfdm1lbnRlcl9oZWxw ZXIoY29uc3Qgc3RydWN0IGNwdV91c2VyX3JlZ3MgKnJlZ3MpCg== --=separator Content-Type: application/octet-stream; name="xsa170-4.3.patch" Content-Disposition: attachment; filename="xsa170-4.3.patch" Content-Transfer-Encoding: base64 eDg2L1ZNWDogc2FuaXRpemUgcklQIGJlZm9yZSByZS1lbnRlcmluZyBndWVz dAoKLi4uIHRvIHByZXZlbnQgZ3Vlc3QgdXNlciBtb2RlIGFycmFuZ2luZyBm b3IgYSBndWVzdCBjcmFzaCAoZHVlIHRvCmZhaWxlZCBWTSBlbnRyeSkuIChP biB0aGUgQU1EIHN5c3RlbSBJIGNoZWNrZWQsIGhhcmR3YXJlIGlzIGRvaW5n CmV4YWN0bHkgdGhlIGNhbm9uaWNhbGl6YXRpb24gYmVpbmcgYWRkZWQgaGVy ZS4pCgpOb3RlIHRoYXQgZml4aW5nIHRoaXMgaW4gYW4gYXJjaGl0ZWN0dXJh bGx5IGNvcnJlY3Qgd2F5IHdvdWxkIGJlIHF1aXRlCmEgYml0IG1vcmUgaW52 b2x2ZWQ6IE1ha2luZyB0aGUgeDg2IGluc3RydWN0aW9uIGVtdWxhdG9yIGNo ZWNrIGFsbApicmFuY2ggdGFyZ2V0cyBmb3IgdmFsaWRpdHksIHBsdXMgZGVh bGluZyB3aXRoIGludmFsaWQgcklQIHJlc3VsdGluZwpmcm9tIHVwZGF0ZV9n dWVzdF9laXAoKSBvciBpbmNvbWluZyBkaXJlY3RseSBkdXJpbmcgYSBWTSBl eGl0LiBUaGUgb25seQp3YXkgdG8gZ2V0IHRoZSBsYXR0ZXIgcmlnaHQgd291 bGQgYmUgYnkgbm90IGhhdmluZyBoYXJkd2FyZSBkbyB0aGUKaW5qZWN0aW9u LgoKTm90ZSBmdXJ0aGVyIHRoYXQgdGhlcmUgYXJlIGEgdHdvIGVhcmx5IHJl dHVybnMgZnJvbQp2bXhfdm1leGl0X2hhbmRsZXIoKTogT25lICh0aHJvdWdo IHZteF9mYWlsZWRfdm1lbnRyeSgpKSBsZWFkcyB0bwpkb21haW5fY3Jhc2go KSBhbnl3YXksIGFuZCB0aGUgb3RoZXIgY292ZXJzIHJlYWwgbW9kZSBvbmx5 IGFuZCBjYW4KbmVpdGhlciBvY2N1ciB3aXRoIGEgbm9uLWNhbm9uaWNhbCBy SVAgbm9yIHJlc3VsdCBpbiBhbiBhbHRlcmVkIHJJUCwKc28gd2UgZG9uJ3Qg bmVlZCB0byBmb3JjZSB0aG9zZSBwYXRocyB0aHJvdWdoIHRoZSBjaGVja2lu ZyBsb2dpYy4KClRoaXMgaXMgWFNBLTE3MC4KClJlcG9ydGVkLWJ5OiDliJjk u6QgPGxpdWxpbmctaXRAMzYwLmNuPgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1 bGljaCA8amJldWxpY2hAc3VzZS5jb20+ClJldmlld2VkLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpUZXN0ZWQtYnk6 IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29wZXIzQGNpdHJpeC5jb20+Cgot LS0gYS94ZW4vYXJjaC94ODYvaHZtL3ZteC92bXguYworKysgYi94ZW4vYXJj aC94ODYvaHZtL3ZteC92bXguYwpAQCAtMjQ4Niw3ICsyNDg2LDcgQEAgdm9p ZCB2bXhfaGFuZGxlX0VPSV9pbmR1Y2VkX2V4aXQoc3RydWN0CiAKIHZvaWQg dm14X3ZtZXhpdF9oYW5kbGVyKHN0cnVjdCBjcHVfdXNlcl9yZWdzICpyZWdz KQogewotICAgIHVuc2lnbmVkIGludCBleGl0X3JlYXNvbiwgaWR0dl9pbmZv LCBpbnRyX2luZm8gPSAwLCB2ZWN0b3IgPSAwOworICAgIHVuc2lnbmVkIGlu dCBleGl0X3JlYXNvbiwgaWR0dl9pbmZvLCBpbnRyX2luZm8gPSAwLCB2ZWN0 b3IgPSAwLCBtb2RlOwogICAgIHVuc2lnbmVkIGxvbmcgZXhpdF9xdWFsaWZp Y2F0aW9uLCBpbnN0X2xlbiA9IDA7CiAgICAgc3RydWN0IHZjcHUgKnYgPSBj dXJyZW50OwogCkBAIC0yOTk4LDYgKzI5OTgsNDAgQEAgdm9pZCB2bXhfdm1l eGl0X2hhbmRsZXIoc3RydWN0IGNwdV91c2VyXwogb3V0OgogICAgIGlmICgg bmVzdGVkaHZtX3ZjcHVfaW5fZ3Vlc3Rtb2RlKHYpICkKICAgICAgICAgbnZt eF9pZHR2X2hhbmRsaW5nKCk7CisKKyAgICAvKgorICAgICAqIFZNIGVudHJ5 IHdpbGwgZmFpbCAoY2F1c2luZyB0aGUgZ3Vlc3QgdG8gZ2V0IGNyYXNoZWQp IGlmIHJJUCAoYW5kCisgICAgICogckZMQUdTLCBidXQgd2UgZG9uJ3QgaGF2 ZSBhbiBpc3N1ZSB0aGVyZSkgZG9lc24ndCBtZWV0IGNlcnRhaW4KKyAgICAg KiBjcml0ZXJpYS4gQXMgd2UgbXVzdCBub3QgYWxsb3cgbGVzcyB0aGFuIGZ1 bGx5IHByaXZpbGVnZWQgbW9kZSB0byBoYXZlCisgICAgICogc3VjaCBhbiBl ZmZlY3Qgb24gdGhlIGRvbWFpbiwgd2UgY29ycmVjdCBySVAgaW4gdGhhdCBj YXNlIChhY2NlcHRpbmcKKyAgICAgKiB0aGlzIG5vdCBiZWluZyBhcmNoaXRl Y3R1cmFsbHkgY29ycmVjdCBiZWhhdmlvciwgYXMgdGhlIGluamVjdGVkICNH UAorICAgICAqIGZhdWx0IHdpbGwgdGhlbiBub3Qgc2VlIHRoZSBjb3JyZWN0 IFtpbnZhbGlkXSByZXR1cm4gYWRkcmVzcykuCisgICAgICogQW5kIHNpbmNl IHdlIGtub3cgdGhlIGd1ZXN0IHdpbGwgY3Jhc2gsIHdlIGNyYXNoIGl0IHJp Z2h0IGF3YXkgaWYgaXQKKyAgICAgKiBhbHJlYWR5IGlzIGluIG1vc3QgcHJp dmlsZWdlZCBtb2RlLgorICAgICAqLworICAgIG1vZGUgPSB2bXhfZ3Vlc3Rf eDg2X21vZGUodik7CisgICAgaWYgKCBtb2RlID09IDggPyAhaXNfY2Fub25p Y2FsX2FkZHJlc3MocmVncy0+cmlwKQorICAgICAgICAgICAgICAgICAgIDog cmVncy0+cmlwICE9IHJlZ3MtPl9laXAgKQorICAgIHsKKyAgICAgICAgc3Ry dWN0IHNlZ21lbnRfcmVnaXN0ZXIgc3M7CisKKyAgICAgICAgZ2RwcmludGso WEVOTE9HX1dBUk5JTkcsICJCYWQgcklQICVseCBmb3IgbW9kZSAldVxuIiwg cmVncy0+cmlwLCBtb2RlKTsKKworICAgICAgICB2bXhfZ2V0X3NlZ21lbnRf cmVnaXN0ZXIodiwgeDg2X3NlZ19zcywgJnNzKTsKKyAgICAgICAgaWYgKCBz cy5hdHRyLmZpZWxkcy5kcGwgKQorICAgICAgICB7CisgICAgICAgICAgICBp ZiAoICEoX192bXJlYWQoVk1fRU5UUllfSU5UUl9JTkZPKSAmIElOVFJfSU5G T19WQUxJRF9NQVNLKSApCisgICAgICAgICAgICAgICAgaHZtX2luamVjdF9o d19leGNlcHRpb24oVFJBUF9ncF9mYXVsdCwgMCk7CisgICAgICAgICAgICAv KiBOZWVkIHRvIGZpeCBySVAgbmV2ZXJ0aGVsZXNzLiAqLworICAgICAgICAg ICAgaWYgKCBtb2RlID09IDggKQorICAgICAgICAgICAgICAgIHJlZ3MtPnJp cCA9IChsb25nKShyZWdzLT5yaXAgPDwgKDY0IC0gVkFERFJfQklUUykpID4+ CisgICAgICAgICAgICAgICAgICAgICAgICAgICAgKDY0IC0gVkFERFJfQklU Uyk7CisgICAgICAgICAgICBlbHNlCisgICAgICAgICAgICAgICAgcmVncy0+ cmlwID0gcmVncy0+X2VpcDsKKyAgICAgICAgfQorICAgICAgICBlbHNlCisg ICAgICAgICAgICBkb21haW5fY3Jhc2godi0+ZG9tYWluKTsKKyAgICB9CiB9 CiAKIHZvaWQgdm14X3ZtZW50ZXJfaGVscGVyKHZvaWQpCg== --=separator Content-Type: application/octet-stream; name="xsa170-4.5.patch" Content-Disposition: attachment; filename="xsa170-4.5.patch" Content-Transfer-Encoding: base64 eDg2L1ZNWDogc2FuaXRpemUgcklQIGJlZm9yZSByZS1lbnRlcmluZyBndWVz dAoKLi4uIHRvIHByZXZlbnQgZ3Vlc3QgdXNlciBtb2RlIGFycmFuZ2luZyBm b3IgYSBndWVzdCBjcmFzaCAoZHVlIHRvCmZhaWxlZCBWTSBlbnRyeSkuIChP biB0aGUgQU1EIHN5c3RlbSBJIGNoZWNrZWQsIGhhcmR3YXJlIGlzIGRvaW5n CmV4YWN0bHkgdGhlIGNhbm9uaWNhbGl6YXRpb24gYmVpbmcgYWRkZWQgaGVy ZS4pCgpOb3RlIHRoYXQgZml4aW5nIHRoaXMgaW4gYW4gYXJjaGl0ZWN0dXJh bGx5IGNvcnJlY3Qgd2F5IHdvdWxkIGJlIHF1aXRlCmEgYml0IG1vcmUgaW52 b2x2ZWQ6IE1ha2luZyB0aGUgeDg2IGluc3RydWN0aW9uIGVtdWxhdG9yIGNo ZWNrIGFsbApicmFuY2ggdGFyZ2V0cyBmb3IgdmFsaWRpdHksIHBsdXMgZGVh bGluZyB3aXRoIGludmFsaWQgcklQIHJlc3VsdGluZwpmcm9tIHVwZGF0ZV9n dWVzdF9laXAoKSBvciBpbmNvbWluZyBkaXJlY3RseSBkdXJpbmcgYSBWTSBl eGl0LiBUaGUgb25seQp3YXkgdG8gZ2V0IHRoZSBsYXR0ZXIgcmlnaHQgd291 bGQgYmUgYnkgbm90IGhhdmluZyBoYXJkd2FyZSBkbyB0aGUKaW5qZWN0aW9u LgoKTm90ZSBmdXJ0aGVyIHRoYXQgdGhlcmUgYXJlIGEgdHdvIGVhcmx5IHJl dHVybnMgZnJvbQp2bXhfdm1leGl0X2hhbmRsZXIoKTogT25lICh0aHJvdWdo IHZteF9mYWlsZWRfdm1lbnRyeSgpKSBsZWFkcyB0bwpkb21haW5fY3Jhc2go KSBhbnl3YXksIGFuZCB0aGUgb3RoZXIgY292ZXJzIHJlYWwgbW9kZSBvbmx5 IGFuZCBjYW4KbmVpdGhlciBvY2N1ciB3aXRoIGEgbm9uLWNhbm9uaWNhbCBy SVAgbm9yIHJlc3VsdCBpbiBhbiBhbHRlcmVkIHJJUCwKc28gd2UgZG9uJ3Qg bmVlZCB0byBmb3JjZSB0aG9zZSBwYXRocyB0aHJvdWdoIHRoZSBjaGVja2lu ZyBsb2dpYy4KClRoaXMgaXMgWFNBLTE3MC4KClJlcG9ydGVkLWJ5OiDliJjk u6QgPGxpdWxpbmctaXRAMzYwLmNuPgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1 bGljaCA8amJldWxpY2hAc3VzZS5jb20+ClJldmlld2VkLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpUZXN0ZWQtYnk6 IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29wZXIzQGNpdHJpeC5jb20+Cgot LS0gYS94ZW4vYXJjaC94ODYvaHZtL3ZteC92bXguYworKysgYi94ZW4vYXJj aC94ODYvaHZtL3ZteC92bXguYwpAQCAtMjY3NSw3ICsyNjc1LDcgQEAgdm9p ZCB2bXhfaGFuZGxlX0VPSV9pbmR1Y2VkX2V4aXQoc3RydWN0CiB2b2lkIHZt eF92bWV4aXRfaGFuZGxlcihzdHJ1Y3QgY3B1X3VzZXJfcmVncyAqcmVncykK IHsKICAgICB1bnNpZ25lZCBsb25nIGV4aXRfcXVhbGlmaWNhdGlvbiwgZXhp dF9yZWFzb24sIGlkdHZfaW5mbywgaW50cl9pbmZvID0gMDsKLSAgICB1bnNp Z25lZCBpbnQgdmVjdG9yID0gMDsKKyAgICB1bnNpZ25lZCBpbnQgdmVjdG9y ID0gMCwgbW9kZTsKICAgICBzdHJ1Y3QgdmNwdSAqdiA9IGN1cnJlbnQ7CiAK ICAgICBfX3ZtcmVhZChHVUVTVF9SSVAsICAgICZyZWdzLT5yaXApOwpAQCAt MzIxOSw2ICszMjE5LDQxIEBAIHZvaWQgdm14X3ZtZXhpdF9oYW5kbGVyKHN0 cnVjdCBjcHVfdXNlcl8KIG91dDoKICAgICBpZiAoIG5lc3RlZGh2bV92Y3B1 X2luX2d1ZXN0bW9kZSh2KSApCiAgICAgICAgIG52bXhfaWR0dl9oYW5kbGlu ZygpOworCisgICAgLyoKKyAgICAgKiBWTSBlbnRyeSB3aWxsIGZhaWwgKGNh dXNpbmcgdGhlIGd1ZXN0IHRvIGdldCBjcmFzaGVkKSBpZiBySVAgKGFuZAor ICAgICAqIHJGTEFHUywgYnV0IHdlIGRvbid0IGhhdmUgYW4gaXNzdWUgdGhl cmUpIGRvZXNuJ3QgbWVldCBjZXJ0YWluCisgICAgICogY3JpdGVyaWEuIEFz IHdlIG11c3Qgbm90IGFsbG93IGxlc3MgdGhhbiBmdWxseSBwcml2aWxlZ2Vk IG1vZGUgdG8gaGF2ZQorICAgICAqIHN1Y2ggYW4gZWZmZWN0IG9uIHRoZSBk b21haW4sIHdlIGNvcnJlY3QgcklQIGluIHRoYXQgY2FzZSAoYWNjZXB0aW5n CisgICAgICogdGhpcyBub3QgYmVpbmcgYXJjaGl0ZWN0dXJhbGx5IGNvcnJl Y3QgYmVoYXZpb3IsIGFzIHRoZSBpbmplY3RlZCAjR1AKKyAgICAgKiBmYXVs dCB3aWxsIHRoZW4gbm90IHNlZSB0aGUgY29ycmVjdCBbaW52YWxpZF0gcmV0 dXJuIGFkZHJlc3MpLgorICAgICAqIEFuZCBzaW5jZSB3ZSBrbm93IHRoZSBn dWVzdCB3aWxsIGNyYXNoLCB3ZSBjcmFzaCBpdCByaWdodCBhd2F5IGlmIGl0 CisgICAgICogYWxyZWFkeSBpcyBpbiBtb3N0IHByaXZpbGVnZWQgbW9kZS4K KyAgICAgKi8KKyAgICBtb2RlID0gdm14X2d1ZXN0X3g4Nl9tb2RlKHYpOwor ICAgIGlmICggbW9kZSA9PSA4ID8gIWlzX2Nhbm9uaWNhbF9hZGRyZXNzKHJl Z3MtPnJpcCkKKyAgICAgICAgICAgICAgICAgICA6IHJlZ3MtPnJpcCAhPSBy ZWdzLT5fZWlwICkKKyAgICB7CisgICAgICAgIHN0cnVjdCBzZWdtZW50X3Jl Z2lzdGVyIHNzOworCisgICAgICAgIGdkcHJpbnRrKFhFTkxPR19XQVJOSU5H LCAiQmFkIHJJUCAlbHggZm9yIG1vZGUgJXVcbiIsIHJlZ3MtPnJpcCwgbW9k ZSk7CisKKyAgICAgICAgdm14X2dldF9zZWdtZW50X3JlZ2lzdGVyKHYsIHg4 Nl9zZWdfc3MsICZzcyk7CisgICAgICAgIGlmICggc3MuYXR0ci5maWVsZHMu ZHBsICkKKyAgICAgICAgeworICAgICAgICAgICAgX192bXJlYWQoVk1fRU5U UllfSU5UUl9JTkZPLCAmaW50cl9pbmZvKTsKKyAgICAgICAgICAgIGlmICgg IShpbnRyX2luZm8gJiBJTlRSX0lORk9fVkFMSURfTUFTSykgKQorICAgICAg ICAgICAgICAgIGh2bV9pbmplY3RfaHdfZXhjZXB0aW9uKFRSQVBfZ3BfZmF1 bHQsIDApOworICAgICAgICAgICAgLyogTmVlZCB0byBmaXggcklQIG5ldmVy dGhlbGVzcy4gKi8KKyAgICAgICAgICAgIGlmICggbW9kZSA9PSA4ICkKKyAg ICAgICAgICAgICAgICByZWdzLT5yaXAgPSAobG9uZykocmVncy0+cmlwIDw8 ICg2NCAtIFZBRERSX0JJVFMpKSA+PgorICAgICAgICAgICAgICAgICAgICAg ICAgICAgICg2NCAtIFZBRERSX0JJVFMpOworICAgICAgICAgICAgZWxzZQor ICAgICAgICAgICAgICAgIHJlZ3MtPnJpcCA9IHJlZ3MtPl9laXA7CisgICAg ICAgIH0KKyAgICAgICAgZWxzZQorICAgICAgICAgICAgZG9tYWluX2NyYXNo KHYtPmRvbWFpbik7CisgICAgfQogfQogCiB2b2lkIHZteF92bWVudGVyX2hl bHBlcihjb25zdCBzdHJ1Y3QgY3B1X3VzZXJfcmVncyAqcmVncykK --=separator Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce --=separator-- From xen-announce-bounces@lists.xen.org Wed Feb 17 12:29:10 2016 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 17 Feb 2016 12:29:10 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1DO-0003dr-SY; Wed, 17 Feb 2016 12:28:18 +0000 Received: from mail6.bemta14.messagelabs.com ([193.109.254.103]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1DN-0003ci-5i; Wed, 17 Feb 2016 12:28:17 +0000 Received: from [193.109.254.147] by server-11.bemta-14.messagelabs.com id B0/9E-28228-06764C65; Wed, 17 Feb 2016 12:28:16 +0000 X-Env-Sender: iwj@xenbits.xen.org X-Msg-Ref: server-9.tower-27.messagelabs.com!1455712094!24465780!1 X-Originating-IP: [50.57.168.107] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG X-StarScan-Received: X-StarScan-Version: 7.35.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 17947 invoked from network); 17 Feb 2016 12:28:15 -0000 Received: from 50-57-168-107.static.cloud-ips.com (HELO mail.xen.org) (50.57.168.107) by server-9.tower-27.messagelabs.com with AES256-SHA encrypted SMTP; 17 Feb 2016 12:28:15 -0000 Received: from xenbits.xenproject.org ([50.57.170.242] helo=xenbits.xen.org) by mail.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aW1Et-0004LK-IP; Wed, 17 Feb 2016 12:29:51 +0000 Received: from iwj by xenbits.xen.org with local (Exim 4.84) (envelope-from ) id 1aW1DA-00065m-A8; Wed, 17 Feb 2016 12:28:04 +0000 Content-Type: multipart/mixed; boundary="=separator"; charset="utf-8" Content-Transfer-Encoding: binary MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) To: xen-announce@lists.xen.org, xen-devel@lists.xen.org, xen-users@lists.xen.org, oss-security@lists.openwall.com From: Xen.org security team Message-Id: Date: Wed, 17 Feb 2016 12:28:04 +0000 Cc: "Xen.org security team" Subject: [Xen-announce] Xen Security Advisory 170 (CVE-2016-2271) - VMX: guest user mode may crash guest with non-canonical RIP X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org --=separator Content-Type: text/plain; charset="utf-8" Content-Disposition: inline Content-Transfer-Encoding: 7bit -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Xen Security Advisory CVE-2016-2271 / XSA-170 version 3 VMX: guest user mode may crash guest with non-canonical RIP UPDATES IN VERSION 3 ==================== Public release. ISSUE DESCRIPTION ================= VMX refuses attempts to enter a guest with an instruction pointer which doesn't satisfy certain requirements. In particular, the instruction pointer needs to be canonical when entering a guest currently in 64-bit mode. This is the case even if the VM entry information specifies an exception to be injected immediately (in which case the bad instruction pointer would possibly never get used for other than pushing onto the exception handler's stack). Provided the guest OS allows user mode to map the virtual memory space immediately below the canonical/non- canonical address boundary, a non-canonical instruction pointer can result even from normal user mode execution. VM entry failure, however, is fatal to the guest. IMPACT ====== Malicious HVM guest user mode code may be able to crash the guest. VULNERABLE SYSTEMS ================== All Xen versions are affected. Only systems using Intel or Cyrix CPUs are affected. ARM and AMD systems are unaffected. Only HVM guests are affected. MITIGATION ========== Running only PV guests will avoid this vulnerability. Running HVM guests on only AMD hardware will also avoid this vulnerability. CREDITS ======= This issue was discovered by Ling Liu of Qihoo 360 Inc. RESOLUTION ========== Applying the appropriate attached patch works around this issue. Note that it does so in a way which isn't architecturally correct, but no better solution has been found (nor suggested by Intel). xsa170.patch xen-unstable, Xen 4.6.x xsa170-4.5.patch Xen 4.5.x, Xen 4.4.x xsa170-4.3.patch Xen 4.3.x $ sha256sum xsa170* 77b4b14b2c93da5f68e724cf74e1616f7df2e78305f66d164b3de2d980221a9a xsa170.patch b35679bf7a35615d827efafff8d13c35ceec1184212e3c8ba110722b9ae8426f xsa170-4.3.patch 1df068fb439c7edc1e86dfa9ea3b9ae99b58cdc3ac874b96cdf63b26ef9a6b98 xsa170-4.5.patch $ DEPLOYMENT DURING EMBARGO ========================= Deployment of the patches and/or mitigations described above (or others which are substantially similar) is permitted during the embargo, even on public-facing systems with untrusted guest users and administrators. But: Distribution of updated software is prohibited (except to other members of the predisclosure list). Predisclosure list members who wish to deploy significantly different patches and/or mitigations, please contact the Xen Project Security Team. (Note: this during-embargo deployment notice is retained in post-embargo publicly released Xen Project advisories, even though it is then no longer applicable. This is to enable the community to have oversight of the Xen Project Security Team's decisionmaking.) For more information about permissible uses of embargoed information, consult the Xen Project community's agreed Security Policy: http://www.xenproject.org/security-policy.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJWxGa0AAoJEIP+FMlX6CvZ3rkIAIo+pvKqkNbHjalgGpP4BVe7 +7tuVnL74wt5Dt4AuOFyPLnEaHbp5UkIKK++eP/urFCz5+/LbOqcWnfiQdWMLQ/t 17NX2CMSYUCwUAkMMjvbKvGM3W8AJ85naIQho9KQSPbY1/Q51jDS5bLT06B2iRr4 njML2ii2OhOTGAvC2XmnidFNvLGQxlfeeC75O9dbCFENSYn5WbdmHonTnK8qm22H eEvLlzg4D6yAmEaqHHZJ3bz1qtTw5FDNm/0tdZ1LO7lMuK01nMHSMmWG/Agc7219 lQH22N0+YTtgQKf65QciEThEnvTeDpeq84m64GqVhwzwssl1JrywrSsVkaQOnKA= =Ca+d -----END PGP SIGNATURE----- --=separator Content-Type: application/octet-stream; name="xsa170.patch" Content-Disposition: attachment; filename="xsa170.patch" Content-Transfer-Encoding: base64 eDg2L1ZNWDogc2FuaXRpemUgcklQIGJlZm9yZSByZS1lbnRlcmluZyBndWVz dAoKLi4uIHRvIHByZXZlbnQgZ3Vlc3QgdXNlciBtb2RlIGFycmFuZ2luZyBm b3IgYSBndWVzdCBjcmFzaCAoZHVlIHRvCmZhaWxlZCBWTSBlbnRyeSkuIChP biB0aGUgQU1EIHN5c3RlbSBJIGNoZWNrZWQsIGhhcmR3YXJlIGlzIGRvaW5n CmV4YWN0bHkgdGhlIGNhbm9uaWNhbGl6YXRpb24gYmVpbmcgYWRkZWQgaGVy ZS4pCgpOb3RlIHRoYXQgZml4aW5nIHRoaXMgaW4gYW4gYXJjaGl0ZWN0dXJh bGx5IGNvcnJlY3Qgd2F5IHdvdWxkIGJlIHF1aXRlCmEgYml0IG1vcmUgaW52 b2x2ZWQ6IE1ha2luZyB0aGUgeDg2IGluc3RydWN0aW9uIGVtdWxhdG9yIGNo ZWNrIGFsbApicmFuY2ggdGFyZ2V0cyBmb3IgdmFsaWRpdHksIHBsdXMgZGVh bGluZyB3aXRoIGludmFsaWQgcklQIHJlc3VsdGluZwpmcm9tIHVwZGF0ZV9n dWVzdF9laXAoKSBvciBpbmNvbWluZyBkaXJlY3RseSBkdXJpbmcgYSBWTSBl eGl0LiBUaGUgb25seQp3YXkgdG8gZ2V0IHRoZSBsYXR0ZXIgcmlnaHQgd291 bGQgYmUgYnkgbm90IGhhdmluZyBoYXJkd2FyZSBkbyB0aGUKaW5qZWN0aW9u LgoKTm90ZSBmdXJ0aGVyIHRoYXQgdGhlcmUgYXJlIGEgdHdvIGVhcmx5IHJl dHVybnMgZnJvbQp2bXhfdm1leGl0X2hhbmRsZXIoKTogT25lICh0aHJvdWdo IHZteF9mYWlsZWRfdm1lbnRyeSgpKSBsZWFkcyB0bwpkb21haW5fY3Jhc2go KSBhbnl3YXksIGFuZCB0aGUgb3RoZXIgY292ZXJzIHJlYWwgbW9kZSBvbmx5 IGFuZCBjYW4KbmVpdGhlciBvY2N1ciB3aXRoIGEgbm9uLWNhbm9uaWNhbCBy SVAgbm9yIHJlc3VsdCBpbiBhbiBhbHRlcmVkIHJJUCwKc28gd2UgZG9uJ3Qg bmVlZCB0byBmb3JjZSB0aG9zZSBwYXRocyB0aHJvdWdoIHRoZSBjaGVja2lu ZyBsb2dpYy4KClRoaXMgaXMgWFNBLTE3MC4KClJlcG9ydGVkLWJ5OiDliJjk u6QgPGxpdWxpbmctaXRAMzYwLmNuPgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1 bGljaCA8amJldWxpY2hAc3VzZS5jb20+ClJldmlld2VkLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpUZXN0ZWQtYnk6 IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29wZXIzQGNpdHJpeC5jb20+Cgot LS0gYS94ZW4vYXJjaC94ODYvaHZtL3ZteC92bXguYworKysgYi94ZW4vYXJj aC94ODYvaHZtL3ZteC92bXguYwpAQCAtMjk2OCw3ICsyOTY4LDcgQEAgc3Rh dGljIGludCB2bXhfaGFuZGxlX2FwaWNfd3JpdGUodm9pZCkKIHZvaWQgdm14 X3ZtZXhpdF9oYW5kbGVyKHN0cnVjdCBjcHVfdXNlcl9yZWdzICpyZWdzKQog ewogICAgIHVuc2lnbmVkIGxvbmcgZXhpdF9xdWFsaWZpY2F0aW9uLCBleGl0 X3JlYXNvbiwgaWR0dl9pbmZvLCBpbnRyX2luZm8gPSAwOwotICAgIHVuc2ln bmVkIGludCB2ZWN0b3IgPSAwOworICAgIHVuc2lnbmVkIGludCB2ZWN0b3Ig PSAwLCBtb2RlOwogICAgIHN0cnVjdCB2Y3B1ICp2ID0gY3VycmVudDsKIAog ICAgIF9fdm1yZWFkKEdVRVNUX1JJUCwgICAgJnJlZ3MtPnJpcCk7CkBAIC0z NTY2LDYgKzM1NjYsNDEgQEAgdm9pZCB2bXhfdm1leGl0X2hhbmRsZXIoc3Ry dWN0IGNwdV91c2VyXwogb3V0OgogICAgIGlmICggbmVzdGVkaHZtX3ZjcHVf aW5fZ3Vlc3Rtb2RlKHYpICkKICAgICAgICAgbnZteF9pZHR2X2hhbmRsaW5n KCk7CisKKyAgICAvKgorICAgICAqIFZNIGVudHJ5IHdpbGwgZmFpbCAoY2F1 c2luZyB0aGUgZ3Vlc3QgdG8gZ2V0IGNyYXNoZWQpIGlmIHJJUCAoYW5kCisg ICAgICogckZMQUdTLCBidXQgd2UgZG9uJ3QgaGF2ZSBhbiBpc3N1ZSB0aGVy ZSkgZG9lc24ndCBtZWV0IGNlcnRhaW4KKyAgICAgKiBjcml0ZXJpYS4gQXMg d2UgbXVzdCBub3QgYWxsb3cgbGVzcyB0aGFuIGZ1bGx5IHByaXZpbGVnZWQg bW9kZSB0byBoYXZlCisgICAgICogc3VjaCBhbiBlZmZlY3Qgb24gdGhlIGRv bWFpbiwgd2UgY29ycmVjdCBySVAgaW4gdGhhdCBjYXNlIChhY2NlcHRpbmcK KyAgICAgKiB0aGlzIG5vdCBiZWluZyBhcmNoaXRlY3R1cmFsbHkgY29ycmVj dCBiZWhhdmlvciwgYXMgdGhlIGluamVjdGVkICNHUAorICAgICAqIGZhdWx0 IHdpbGwgdGhlbiBub3Qgc2VlIHRoZSBjb3JyZWN0IFtpbnZhbGlkXSByZXR1 cm4gYWRkcmVzcykuCisgICAgICogQW5kIHNpbmNlIHdlIGtub3cgdGhlIGd1 ZXN0IHdpbGwgY3Jhc2gsIHdlIGNyYXNoIGl0IHJpZ2h0IGF3YXkgaWYgaXQK KyAgICAgKiBhbHJlYWR5IGlzIGluIG1vc3QgcHJpdmlsZWdlZCBtb2RlLgor ICAgICAqLworICAgIG1vZGUgPSB2bXhfZ3Vlc3RfeDg2X21vZGUodik7Cisg ICAgaWYgKCBtb2RlID09IDggPyAhaXNfY2Fub25pY2FsX2FkZHJlc3MocmVn cy0+cmlwKQorICAgICAgICAgICAgICAgICAgIDogcmVncy0+cmlwICE9IHJl Z3MtPl9laXAgKQorICAgIHsKKyAgICAgICAgc3RydWN0IHNlZ21lbnRfcmVn aXN0ZXIgc3M7CisKKyAgICAgICAgZ3ByaW50ayhYRU5MT0dfV0FSTklORywg IkJhZCBySVAgJWx4IGZvciBtb2RlICV1XG4iLCByZWdzLT5yaXAsIG1vZGUp OworCisgICAgICAgIHZteF9nZXRfc2VnbWVudF9yZWdpc3Rlcih2LCB4ODZf c2VnX3NzLCAmc3MpOworICAgICAgICBpZiAoIHNzLmF0dHIuZmllbGRzLmRw bCApCisgICAgICAgIHsKKyAgICAgICAgICAgIF9fdm1yZWFkKFZNX0VOVFJZ X0lOVFJfSU5GTywgJmludHJfaW5mbyk7CisgICAgICAgICAgICBpZiAoICEo aW50cl9pbmZvICYgSU5UUl9JTkZPX1ZBTElEX01BU0spICkKKyAgICAgICAg ICAgICAgICBodm1faW5qZWN0X2h3X2V4Y2VwdGlvbihUUkFQX2dwX2ZhdWx0 LCAwKTsKKyAgICAgICAgICAgIC8qIE5lZWQgdG8gZml4IHJJUCBuZXZlcnRo ZWxlc3MuICovCisgICAgICAgICAgICBpZiAoIG1vZGUgPT0gOCApCisgICAg ICAgICAgICAgICAgcmVncy0+cmlwID0gKGxvbmcpKHJlZ3MtPnJpcCA8PCAo NjQgLSBWQUREUl9CSVRTKSkgPj4KKyAgICAgICAgICAgICAgICAgICAgICAg ICAgICAoNjQgLSBWQUREUl9CSVRTKTsKKyAgICAgICAgICAgIGVsc2UKKyAg ICAgICAgICAgICAgICByZWdzLT5yaXAgPSByZWdzLT5fZWlwOworICAgICAg ICB9CisgICAgICAgIGVsc2UKKyAgICAgICAgICAgIGRvbWFpbl9jcmFzaCh2 LT5kb21haW4pOworICAgIH0KIH0KIAogdm9pZCB2bXhfdm1lbnRlcl9oZWxw ZXIoY29uc3Qgc3RydWN0IGNwdV91c2VyX3JlZ3MgKnJlZ3MpCg== --=separator Content-Type: application/octet-stream; name="xsa170-4.3.patch" Content-Disposition: attachment; filename="xsa170-4.3.patch" Content-Transfer-Encoding: base64 eDg2L1ZNWDogc2FuaXRpemUgcklQIGJlZm9yZSByZS1lbnRlcmluZyBndWVz dAoKLi4uIHRvIHByZXZlbnQgZ3Vlc3QgdXNlciBtb2RlIGFycmFuZ2luZyBm b3IgYSBndWVzdCBjcmFzaCAoZHVlIHRvCmZhaWxlZCBWTSBlbnRyeSkuIChP biB0aGUgQU1EIHN5c3RlbSBJIGNoZWNrZWQsIGhhcmR3YXJlIGlzIGRvaW5n CmV4YWN0bHkgdGhlIGNhbm9uaWNhbGl6YXRpb24gYmVpbmcgYWRkZWQgaGVy ZS4pCgpOb3RlIHRoYXQgZml4aW5nIHRoaXMgaW4gYW4gYXJjaGl0ZWN0dXJh bGx5IGNvcnJlY3Qgd2F5IHdvdWxkIGJlIHF1aXRlCmEgYml0IG1vcmUgaW52 b2x2ZWQ6IE1ha2luZyB0aGUgeDg2IGluc3RydWN0aW9uIGVtdWxhdG9yIGNo ZWNrIGFsbApicmFuY2ggdGFyZ2V0cyBmb3IgdmFsaWRpdHksIHBsdXMgZGVh bGluZyB3aXRoIGludmFsaWQgcklQIHJlc3VsdGluZwpmcm9tIHVwZGF0ZV9n dWVzdF9laXAoKSBvciBpbmNvbWluZyBkaXJlY3RseSBkdXJpbmcgYSBWTSBl eGl0LiBUaGUgb25seQp3YXkgdG8gZ2V0IHRoZSBsYXR0ZXIgcmlnaHQgd291 bGQgYmUgYnkgbm90IGhhdmluZyBoYXJkd2FyZSBkbyB0aGUKaW5qZWN0aW9u LgoKTm90ZSBmdXJ0aGVyIHRoYXQgdGhlcmUgYXJlIGEgdHdvIGVhcmx5IHJl dHVybnMgZnJvbQp2bXhfdm1leGl0X2hhbmRsZXIoKTogT25lICh0aHJvdWdo IHZteF9mYWlsZWRfdm1lbnRyeSgpKSBsZWFkcyB0bwpkb21haW5fY3Jhc2go KSBhbnl3YXksIGFuZCB0aGUgb3RoZXIgY292ZXJzIHJlYWwgbW9kZSBvbmx5 IGFuZCBjYW4KbmVpdGhlciBvY2N1ciB3aXRoIGEgbm9uLWNhbm9uaWNhbCBy SVAgbm9yIHJlc3VsdCBpbiBhbiBhbHRlcmVkIHJJUCwKc28gd2UgZG9uJ3Qg bmVlZCB0byBmb3JjZSB0aG9zZSBwYXRocyB0aHJvdWdoIHRoZSBjaGVja2lu ZyBsb2dpYy4KClRoaXMgaXMgWFNBLTE3MC4KClJlcG9ydGVkLWJ5OiDliJjk u6QgPGxpdWxpbmctaXRAMzYwLmNuPgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1 bGljaCA8amJldWxpY2hAc3VzZS5jb20+ClJldmlld2VkLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpUZXN0ZWQtYnk6 IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29wZXIzQGNpdHJpeC5jb20+Cgot LS0gYS94ZW4vYXJjaC94ODYvaHZtL3ZteC92bXguYworKysgYi94ZW4vYXJj aC94ODYvaHZtL3ZteC92bXguYwpAQCAtMjQ4Niw3ICsyNDg2LDcgQEAgdm9p ZCB2bXhfaGFuZGxlX0VPSV9pbmR1Y2VkX2V4aXQoc3RydWN0CiAKIHZvaWQg dm14X3ZtZXhpdF9oYW5kbGVyKHN0cnVjdCBjcHVfdXNlcl9yZWdzICpyZWdz KQogewotICAgIHVuc2lnbmVkIGludCBleGl0X3JlYXNvbiwgaWR0dl9pbmZv LCBpbnRyX2luZm8gPSAwLCB2ZWN0b3IgPSAwOworICAgIHVuc2lnbmVkIGlu dCBleGl0X3JlYXNvbiwgaWR0dl9pbmZvLCBpbnRyX2luZm8gPSAwLCB2ZWN0 b3IgPSAwLCBtb2RlOwogICAgIHVuc2lnbmVkIGxvbmcgZXhpdF9xdWFsaWZp Y2F0aW9uLCBpbnN0X2xlbiA9IDA7CiAgICAgc3RydWN0IHZjcHUgKnYgPSBj dXJyZW50OwogCkBAIC0yOTk4LDYgKzI5OTgsNDAgQEAgdm9pZCB2bXhfdm1l eGl0X2hhbmRsZXIoc3RydWN0IGNwdV91c2VyXwogb3V0OgogICAgIGlmICgg bmVzdGVkaHZtX3ZjcHVfaW5fZ3Vlc3Rtb2RlKHYpICkKICAgICAgICAgbnZt eF9pZHR2X2hhbmRsaW5nKCk7CisKKyAgICAvKgorICAgICAqIFZNIGVudHJ5 IHdpbGwgZmFpbCAoY2F1c2luZyB0aGUgZ3Vlc3QgdG8gZ2V0IGNyYXNoZWQp IGlmIHJJUCAoYW5kCisgICAgICogckZMQUdTLCBidXQgd2UgZG9uJ3QgaGF2 ZSBhbiBpc3N1ZSB0aGVyZSkgZG9lc24ndCBtZWV0IGNlcnRhaW4KKyAgICAg KiBjcml0ZXJpYS4gQXMgd2UgbXVzdCBub3QgYWxsb3cgbGVzcyB0aGFuIGZ1 bGx5IHByaXZpbGVnZWQgbW9kZSB0byBoYXZlCisgICAgICogc3VjaCBhbiBl ZmZlY3Qgb24gdGhlIGRvbWFpbiwgd2UgY29ycmVjdCBySVAgaW4gdGhhdCBj YXNlIChhY2NlcHRpbmcKKyAgICAgKiB0aGlzIG5vdCBiZWluZyBhcmNoaXRl Y3R1cmFsbHkgY29ycmVjdCBiZWhhdmlvciwgYXMgdGhlIGluamVjdGVkICNH UAorICAgICAqIGZhdWx0IHdpbGwgdGhlbiBub3Qgc2VlIHRoZSBjb3JyZWN0 IFtpbnZhbGlkXSByZXR1cm4gYWRkcmVzcykuCisgICAgICogQW5kIHNpbmNl IHdlIGtub3cgdGhlIGd1ZXN0IHdpbGwgY3Jhc2gsIHdlIGNyYXNoIGl0IHJp Z2h0IGF3YXkgaWYgaXQKKyAgICAgKiBhbHJlYWR5IGlzIGluIG1vc3QgcHJp dmlsZWdlZCBtb2RlLgorICAgICAqLworICAgIG1vZGUgPSB2bXhfZ3Vlc3Rf eDg2X21vZGUodik7CisgICAgaWYgKCBtb2RlID09IDggPyAhaXNfY2Fub25p Y2FsX2FkZHJlc3MocmVncy0+cmlwKQorICAgICAgICAgICAgICAgICAgIDog cmVncy0+cmlwICE9IHJlZ3MtPl9laXAgKQorICAgIHsKKyAgICAgICAgc3Ry dWN0IHNlZ21lbnRfcmVnaXN0ZXIgc3M7CisKKyAgICAgICAgZ2RwcmludGso WEVOTE9HX1dBUk5JTkcsICJCYWQgcklQICVseCBmb3IgbW9kZSAldVxuIiwg cmVncy0+cmlwLCBtb2RlKTsKKworICAgICAgICB2bXhfZ2V0X3NlZ21lbnRf cmVnaXN0ZXIodiwgeDg2X3NlZ19zcywgJnNzKTsKKyAgICAgICAgaWYgKCBz cy5hdHRyLmZpZWxkcy5kcGwgKQorICAgICAgICB7CisgICAgICAgICAgICBp ZiAoICEoX192bXJlYWQoVk1fRU5UUllfSU5UUl9JTkZPKSAmIElOVFJfSU5G T19WQUxJRF9NQVNLKSApCisgICAgICAgICAgICAgICAgaHZtX2luamVjdF9o d19leGNlcHRpb24oVFJBUF9ncF9mYXVsdCwgMCk7CisgICAgICAgICAgICAv KiBOZWVkIHRvIGZpeCBySVAgbmV2ZXJ0aGVsZXNzLiAqLworICAgICAgICAg ICAgaWYgKCBtb2RlID09IDggKQorICAgICAgICAgICAgICAgIHJlZ3MtPnJp cCA9IChsb25nKShyZWdzLT5yaXAgPDwgKDY0IC0gVkFERFJfQklUUykpID4+ CisgICAgICAgICAgICAgICAgICAgICAgICAgICAgKDY0IC0gVkFERFJfQklU Uyk7CisgICAgICAgICAgICBlbHNlCisgICAgICAgICAgICAgICAgcmVncy0+ cmlwID0gcmVncy0+X2VpcDsKKyAgICAgICAgfQorICAgICAgICBlbHNlCisg ICAgICAgICAgICBkb21haW5fY3Jhc2godi0+ZG9tYWluKTsKKyAgICB9CiB9 CiAKIHZvaWQgdm14X3ZtZW50ZXJfaGVscGVyKHZvaWQpCg== --=separator Content-Type: application/octet-stream; name="xsa170-4.5.patch" Content-Disposition: attachment; filename="xsa170-4.5.patch" Content-Transfer-Encoding: base64 eDg2L1ZNWDogc2FuaXRpemUgcklQIGJlZm9yZSByZS1lbnRlcmluZyBndWVz dAoKLi4uIHRvIHByZXZlbnQgZ3Vlc3QgdXNlciBtb2RlIGFycmFuZ2luZyBm b3IgYSBndWVzdCBjcmFzaCAoZHVlIHRvCmZhaWxlZCBWTSBlbnRyeSkuIChP biB0aGUgQU1EIHN5c3RlbSBJIGNoZWNrZWQsIGhhcmR3YXJlIGlzIGRvaW5n CmV4YWN0bHkgdGhlIGNhbm9uaWNhbGl6YXRpb24gYmVpbmcgYWRkZWQgaGVy ZS4pCgpOb3RlIHRoYXQgZml4aW5nIHRoaXMgaW4gYW4gYXJjaGl0ZWN0dXJh bGx5IGNvcnJlY3Qgd2F5IHdvdWxkIGJlIHF1aXRlCmEgYml0IG1vcmUgaW52 b2x2ZWQ6IE1ha2luZyB0aGUgeDg2IGluc3RydWN0aW9uIGVtdWxhdG9yIGNo ZWNrIGFsbApicmFuY2ggdGFyZ2V0cyBmb3IgdmFsaWRpdHksIHBsdXMgZGVh bGluZyB3aXRoIGludmFsaWQgcklQIHJlc3VsdGluZwpmcm9tIHVwZGF0ZV9n dWVzdF9laXAoKSBvciBpbmNvbWluZyBkaXJlY3RseSBkdXJpbmcgYSBWTSBl eGl0LiBUaGUgb25seQp3YXkgdG8gZ2V0IHRoZSBsYXR0ZXIgcmlnaHQgd291 bGQgYmUgYnkgbm90IGhhdmluZyBoYXJkd2FyZSBkbyB0aGUKaW5qZWN0aW9u LgoKTm90ZSBmdXJ0aGVyIHRoYXQgdGhlcmUgYXJlIGEgdHdvIGVhcmx5IHJl dHVybnMgZnJvbQp2bXhfdm1leGl0X2hhbmRsZXIoKTogT25lICh0aHJvdWdo IHZteF9mYWlsZWRfdm1lbnRyeSgpKSBsZWFkcyB0bwpkb21haW5fY3Jhc2go KSBhbnl3YXksIGFuZCB0aGUgb3RoZXIgY292ZXJzIHJlYWwgbW9kZSBvbmx5 IGFuZCBjYW4KbmVpdGhlciBvY2N1ciB3aXRoIGEgbm9uLWNhbm9uaWNhbCBy SVAgbm9yIHJlc3VsdCBpbiBhbiBhbHRlcmVkIHJJUCwKc28gd2UgZG9uJ3Qg bmVlZCB0byBmb3JjZSB0aG9zZSBwYXRocyB0aHJvdWdoIHRoZSBjaGVja2lu ZyBsb2dpYy4KClRoaXMgaXMgWFNBLTE3MC4KClJlcG9ydGVkLWJ5OiDliJjk u6QgPGxpdWxpbmctaXRAMzYwLmNuPgpTaWduZWQtb2ZmLWJ5OiBKYW4gQmV1 bGljaCA8amJldWxpY2hAc3VzZS5jb20+ClJldmlld2VkLWJ5OiBBbmRyZXcg Q29vcGVyIDxhbmRyZXcuY29vcGVyM0BjaXRyaXguY29tPgpUZXN0ZWQtYnk6 IEFuZHJldyBDb29wZXIgPGFuZHJldy5jb29wZXIzQGNpdHJpeC5jb20+Cgot LS0gYS94ZW4vYXJjaC94ODYvaHZtL3ZteC92bXguYworKysgYi94ZW4vYXJj aC94ODYvaHZtL3ZteC92bXguYwpAQCAtMjY3NSw3ICsyNjc1LDcgQEAgdm9p ZCB2bXhfaGFuZGxlX0VPSV9pbmR1Y2VkX2V4aXQoc3RydWN0CiB2b2lkIHZt eF92bWV4aXRfaGFuZGxlcihzdHJ1Y3QgY3B1X3VzZXJfcmVncyAqcmVncykK IHsKICAgICB1bnNpZ25lZCBsb25nIGV4aXRfcXVhbGlmaWNhdGlvbiwgZXhp dF9yZWFzb24sIGlkdHZfaW5mbywgaW50cl9pbmZvID0gMDsKLSAgICB1bnNp Z25lZCBpbnQgdmVjdG9yID0gMDsKKyAgICB1bnNpZ25lZCBpbnQgdmVjdG9y ID0gMCwgbW9kZTsKICAgICBzdHJ1Y3QgdmNwdSAqdiA9IGN1cnJlbnQ7CiAK ICAgICBfX3ZtcmVhZChHVUVTVF9SSVAsICAgICZyZWdzLT5yaXApOwpAQCAt MzIxOSw2ICszMjE5LDQxIEBAIHZvaWQgdm14X3ZtZXhpdF9oYW5kbGVyKHN0 cnVjdCBjcHVfdXNlcl8KIG91dDoKICAgICBpZiAoIG5lc3RlZGh2bV92Y3B1 X2luX2d1ZXN0bW9kZSh2KSApCiAgICAgICAgIG52bXhfaWR0dl9oYW5kbGlu ZygpOworCisgICAgLyoKKyAgICAgKiBWTSBlbnRyeSB3aWxsIGZhaWwgKGNh dXNpbmcgdGhlIGd1ZXN0IHRvIGdldCBjcmFzaGVkKSBpZiBySVAgKGFuZAor ICAgICAqIHJGTEFHUywgYnV0IHdlIGRvbid0IGhhdmUgYW4gaXNzdWUgdGhl cmUpIGRvZXNuJ3QgbWVldCBjZXJ0YWluCisgICAgICogY3JpdGVyaWEuIEFz IHdlIG11c3Qgbm90IGFsbG93IGxlc3MgdGhhbiBmdWxseSBwcml2aWxlZ2Vk IG1vZGUgdG8gaGF2ZQorICAgICAqIHN1Y2ggYW4gZWZmZWN0IG9uIHRoZSBk b21haW4sIHdlIGNvcnJlY3QgcklQIGluIHRoYXQgY2FzZSAoYWNjZXB0aW5n CisgICAgICogdGhpcyBub3QgYmVpbmcgYXJjaGl0ZWN0dXJhbGx5IGNvcnJl Y3QgYmVoYXZpb3IsIGFzIHRoZSBpbmplY3RlZCAjR1AKKyAgICAgKiBmYXVs dCB3aWxsIHRoZW4gbm90IHNlZSB0aGUgY29ycmVjdCBbaW52YWxpZF0gcmV0 dXJuIGFkZHJlc3MpLgorICAgICAqIEFuZCBzaW5jZSB3ZSBrbm93IHRoZSBn dWVzdCB3aWxsIGNyYXNoLCB3ZSBjcmFzaCBpdCByaWdodCBhd2F5IGlmIGl0 CisgICAgICogYWxyZWFkeSBpcyBpbiBtb3N0IHByaXZpbGVnZWQgbW9kZS4K KyAgICAgKi8KKyAgICBtb2RlID0gdm14X2d1ZXN0X3g4Nl9tb2RlKHYpOwor ICAgIGlmICggbW9kZSA9PSA4ID8gIWlzX2Nhbm9uaWNhbF9hZGRyZXNzKHJl Z3MtPnJpcCkKKyAgICAgICAgICAgICAgICAgICA6IHJlZ3MtPnJpcCAhPSBy ZWdzLT5fZWlwICkKKyAgICB7CisgICAgICAgIHN0cnVjdCBzZWdtZW50X3Jl Z2lzdGVyIHNzOworCisgICAgICAgIGdkcHJpbnRrKFhFTkxPR19XQVJOSU5H LCAiQmFkIHJJUCAlbHggZm9yIG1vZGUgJXVcbiIsIHJlZ3MtPnJpcCwgbW9k ZSk7CisKKyAgICAgICAgdm14X2dldF9zZWdtZW50X3JlZ2lzdGVyKHYsIHg4 Nl9zZWdfc3MsICZzcyk7CisgICAgICAgIGlmICggc3MuYXR0ci5maWVsZHMu ZHBsICkKKyAgICAgICAgeworICAgICAgICAgICAgX192bXJlYWQoVk1fRU5U UllfSU5UUl9JTkZPLCAmaW50cl9pbmZvKTsKKyAgICAgICAgICAgIGlmICgg IShpbnRyX2luZm8gJiBJTlRSX0lORk9fVkFMSURfTUFTSykgKQorICAgICAg ICAgICAgICAgIGh2bV9pbmplY3RfaHdfZXhjZXB0aW9uKFRSQVBfZ3BfZmF1 bHQsIDApOworICAgICAgICAgICAgLyogTmVlZCB0byBmaXggcklQIG5ldmVy dGhlbGVzcy4gKi8KKyAgICAgICAgICAgIGlmICggbW9kZSA9PSA4ICkKKyAg ICAgICAgICAgICAgICByZWdzLT5yaXAgPSAobG9uZykocmVncy0+cmlwIDw8 ICg2NCAtIFZBRERSX0JJVFMpKSA+PgorICAgICAgICAgICAgICAgICAgICAg ICAgICAgICg2NCAtIFZBRERSX0JJVFMpOworICAgICAgICAgICAgZWxzZQor ICAgICAgICAgICAgICAgIHJlZ3MtPnJpcCA9IHJlZ3MtPl9laXA7CisgICAg ICAgIH0KKyAgICAgICAgZWxzZQorICAgICAgICAgICAgZG9tYWluX2NyYXNo KHYtPmRvbWFpbik7CisgICAgfQogfQogCiB2b2lkIHZteF92bWVudGVyX2hl bHBlcihjb25zdCBzdHJ1Y3QgY3B1X3VzZXJfcmVncyAqcmVncykK --=separator Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce --=separator-- From xen-announce-bounces@lists.xen.org Wed Feb 24 18:54:42 2016 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 24 Feb 2016 18:54:42 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aYeZ0-0001JK-AI; Wed, 24 Feb 2016 18:53:30 +0000 Received: from mail6.bemta3.messagelabs.com ([195.245.230.39]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aYeWj-00011z-Kz; Wed, 24 Feb 2016 18:51:09 +0000 Received: from [85.158.137.68] by server-11.bemta-3.messagelabs.com id 06/12-02978-B9BFDC65; Wed, 24 Feb 2016 18:51:07 +0000 X-Env-Sender: lars.kurth.xen@gmail.com X-Msg-Ref: server-13.tower-31.messagelabs.com!1456339864!24275828!1 X-Originating-IP: [74.125.82.53] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG, ML_RADAR_SPEW_LINKS_8,spamassassin: ,surbl: (ASYNC_NO) c3VyYmxfcmVjaGVja19kZWxheTogMCAoYWJhbmRvbmVkOiBBbGwgdXJscyByZXR1cm5lZCBsZ l9u\nZWdhdGl2ZSk=\n X-StarScan-Received: X-StarScan-Version: 7.35.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 47469 invoked from network); 24 Feb 2016 18:51:05 -0000 Received: from mail-wm0-f53.google.com (HELO mail-wm0-f53.google.com) (74.125.82.53) by server-13.tower-31.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 24 Feb 2016 18:51:05 -0000 Received: by mail-wm0-f53.google.com with SMTP id b205so1831754wmb.1; Wed, 24 Feb 2016 10:51:05 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-type:content-transfer-encoding:subject:date:message-id :cc:to:mime-version; bh=WKzbcDdHtApKEgyblR7yQGihrsaWfSOID40I398qFhM=; b=I51I/Gog2NJs0K9aVwkqtYGkZLx94CB4wB8UBi4rTP3lsrkxKrQa4np0tKXGnxkaTq Jbxp+fNR3zIzzumGmKcP+oEriLia6ev45hualbu2O2t/kqT3Vor6EtIgb3efH9SbGVcO 7qCsgthxfW5EP6k2ToqLW6czhnwGvfC00OVL9+kxxnksfzYo8MT5M4TFpNmRut/hSIsT fAdeQYw4etl772VWl646AtfwI3bqGA7DLgrPHE2FkE3+1yoraahBCP60HhmEaRiQNOOl u9qBS0M1GUftyrTTuEBQrwEP76UmmPCOJwiuHa2QsApDcxBWQTlLXoVoY3VeZ3QS5y7E JkiA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:content-type:content-transfer-encoding :subject:date:message-id:cc:to:mime-version; bh=WKzbcDdHtApKEgyblR7yQGihrsaWfSOID40I398qFhM=; b=A3wqO87T249PaLsZ39Ii7z0AvDQquH/HS8KR/DlT14B7NxX80dZiN3cfMdGT1Ah9F0 TrJgcstpn2FxQszGGBlhlH302GmlgvfPvhfnhQniJwOgYZZh7QihWV1vZ3mMeeQhjVkp 2i/8ktAqtQDJylGZmfQ9XT2LEKMBFoQNEFJCgffMM5uao0Z/ykaf6H8YEB4yWHsoOVBy XbZFduxqhDMl8Aht8a8wqvhXNkUhYy2puD6mlql6GQTR7Xx0eTaz9qVtVGYbRler1QqN SyXxU/NMYHyXot6DVn87FvBd++3RNG/zzbZdtW2bR202mIQHozzGFxw1zz1tDdJrKDZJ IXDA== X-Gm-Message-State: AG10YOQyWHoNJRK/HmXE+cIQfelr0pFOhTo0LRuPdRvMamPILSRWB0b9Q+IC5Kr4GxX+iA== X-Received: by 10.28.98.138 with SMTP id w132mr24076079wmb.45.1456339864676; Wed, 24 Feb 2016 10:51:04 -0800 (PST) Received: from dhcp-3-217.uk.xensource.com (default-46-102-197-194.interdsl.co.uk. [46.102.197.194]) by smtp.gmail.com with ESMTPSA id pu8sm4295288wjc.17.2016.02.24.10.51.03 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 24 Feb 2016 10:51:04 -0800 (PST) From: Lars Kurth Date: Wed, 24 Feb 2016 18:51:02 +0000 Message-Id: <884EC716-0ED5-4D36-886A-4752AAC6C913@gmail.com> To: xen-devel , xen-announce Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\)) X-Mailer: Apple Mail (2.2104) X-Mailman-Approved-At: Wed, 24 Feb 2016 18:53:28 +0000 Cc: Keir Fraser , Ian Campbell , xen-api , Tim Deegan , minios-devel , embedded-pv-devel , mirageos-devel , win-pv-devel Subject: [Xen-announce] Call for nominations for new Hypervisor subproject maintainers and committers X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org Dear Community members, I wanted to inform you that both Keir Fraser and Tim Deegan, have formally stepped down in their roles as committers from the Hypervisor team. In addition, you may have seen that Ian Campbell recently transferred maintainer-ship for many components to other community members (see http://bit.ly/1RnM8JP). This means that Ian will take a much less active role within the project in the future. First and foremost, the remaining committers and the Xen Project Advisory Board would like to thank Keir, Tim and Ian for serving the Xen Project community and their manyfold and diverse contributions. Given, that as a project, we have found it difficult to promote contributors to maintainer and committer roles in the past, the remaining group of committers felt that we should use a more formal appointment process to successions and succession planning and have asked me to organise this process. Taking a longer term view, the committers also felt that we should not restrict the appointment process to replacing committer positions only, but to consider additional committer positions based on merit and to also include new maintainer nominations. Thus, to fill these positions, we are soliciting nominations. To nominate yourself or someone else within the community, please send e-mail to appointments@xenproject.org with one of the following subject lines: - "Maintainer Nomination of [name]" - "Committer Nomination of [name]" Nominees will of course be asked, privately, whether they would be willing to serve, if they have been nominated by someone else. Please provide contact details (at least the full name and e-mail address of nominee) in the body of the e-mail and describe why the nominee would be a good fit a maintainer and/or committer. The body of the nomination should list technical knowledge that is needed to be a maintainer and/or committer and highlight core areas of expertise. In addition, we are also interested in specific instances, where the nominee showed communication and open source leadership qualities. For example: * Was able to help resolve disagreements, both technical and non- technical, which you were a party to or observer of. * Was able to contribute to improve quality and architectural consistency across several components within the Hypervisor * Has been involved in coordinating the activities of several community members * Has led or driven technical initiatives or larger scale feature development within the community * Has mentored and encouraged newcomers to the community * Has represented the project or aspects of it (e.g. via talks, blog posts, ...) * Has shown other communication and open source leadership qualities Being a maintainer and/or committer does require a time commitment. Nominees should be able to follow e-mail discussions on xen-devel@ on an ongoing basis and respond within a couple of days so that discussions progress. Committers should ideally be able to spend a minimum of 4-5 days working on the project per month. For maintainers, the time requirement is likely less. We anticipate starting our selection process according to the following rough time-table. Today: Public call for nominations for new committers and maintainers (self-nominations and 3rd-party nominations both welcome) March 11: Closing date for nominations up to March 30: We email non-self-nominated nominees in private to ask them to confirm whether they are willing to act as nominees. We will also discuss with all nominees, time commitment and other possible questions (from both nominees and existing committers), related to the proposed nominations. March 30: We conduct a formal vote to ratify nominations April 6: We publish the new maintainers and committers (we may do this earlier) Note that we have identified some issues in our governance, such as whether we need to elect a new project lead or whether we introduce a committee to steer the project instead, alongside other issues. We aim to resolve these issues *after* new maintainers and committers have been elected. If you do have any questions related to the process, feel free to reply to this thread. In addition, if you want to nominate someone else or yourself but are not sure, feel free to send your question to appointments@xenproject.org preceded by "Question:" in the subject line. Best Regards Lars Kurth Xen Project Community Manager Chairman of Xen Project Advisory Board _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce From xen-announce-bounces@lists.xen.org Wed Feb 24 18:54:42 2016 Return-path: Envelope-to: archives@lists.xen.org Delivery-date: Wed, 24 Feb 2016 18:54:42 +0000 Received: from localhost ([127.0.0.1] helo=lists.xen.org) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aYeZ0-0001JK-AI; Wed, 24 Feb 2016 18:53:30 +0000 Received: from mail6.bemta3.messagelabs.com ([195.245.230.39]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1aYeWj-00011z-Kz; Wed, 24 Feb 2016 18:51:09 +0000 Received: from [85.158.137.68] by server-11.bemta-3.messagelabs.com id 06/12-02978-B9BFDC65; Wed, 24 Feb 2016 18:51:07 +0000 X-Env-Sender: lars.kurth.xen@gmail.com X-Msg-Ref: server-13.tower-31.messagelabs.com!1456339864!24275828!1 X-Originating-IP: [74.125.82.53] X-SpamReason: No, hits=0.5 required=7.0 tests=BODY_RANDOM_LONG, ML_RADAR_SPEW_LINKS_8,spamassassin: ,surbl: (ASYNC_NO) c3VyYmxfcmVjaGVja19kZWxheTogMCAoYWJhbmRvbmVkOiBBbGwgdXJscyByZXR1cm5lZCBsZ l9u\nZWdhdGl2ZSk=\n X-StarScan-Received: X-StarScan-Version: 7.35.1; banners=-,-,- X-VirusChecked: Checked Received: (qmail 47469 invoked from network); 24 Feb 2016 18:51:05 -0000 Received: from mail-wm0-f53.google.com (HELO mail-wm0-f53.google.com) (74.125.82.53) by server-13.tower-31.messagelabs.com with AES128-GCM-SHA256 encrypted SMTP; 24 Feb 2016 18:51:05 -0000 Received: by mail-wm0-f53.google.com with SMTP id b205so1831754wmb.1; Wed, 24 Feb 2016 10:51:05 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-type:content-transfer-encoding:subject:date:message-id :cc:to:mime-version; bh=WKzbcDdHtApKEgyblR7yQGihrsaWfSOID40I398qFhM=; b=I51I/Gog2NJs0K9aVwkqtYGkZLx94CB4wB8UBi4rTP3lsrkxKrQa4np0tKXGnxkaTq Jbxp+fNR3zIzzumGmKcP+oEriLia6ev45hualbu2O2t/kqT3Vor6EtIgb3efH9SbGVcO 7qCsgthxfW5EP6k2ToqLW6czhnwGvfC00OVL9+kxxnksfzYo8MT5M4TFpNmRut/hSIsT fAdeQYw4etl772VWl646AtfwI3bqGA7DLgrPHE2FkE3+1yoraahBCP60HhmEaRiQNOOl u9qBS0M1GUftyrTTuEBQrwEP76UmmPCOJwiuHa2QsApDcxBWQTlLXoVoY3VeZ3QS5y7E JkiA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:content-type:content-transfer-encoding :subject:date:message-id:cc:to:mime-version; bh=WKzbcDdHtApKEgyblR7yQGihrsaWfSOID40I398qFhM=; b=A3wqO87T249PaLsZ39Ii7z0AvDQquH/HS8KR/DlT14B7NxX80dZiN3cfMdGT1Ah9F0 TrJgcstpn2FxQszGGBlhlH302GmlgvfPvhfnhQniJwOgYZZh7QihWV1vZ3mMeeQhjVkp 2i/8ktAqtQDJylGZmfQ9XT2LEKMBFoQNEFJCgffMM5uao0Z/ykaf6H8YEB4yWHsoOVBy XbZFduxqhDMl8Aht8a8wqvhXNkUhYy2puD6mlql6GQTR7Xx0eTaz9qVtVGYbRler1QqN SyXxU/NMYHyXot6DVn87FvBd++3RNG/zzbZdtW2bR202mIQHozzGFxw1zz1tDdJrKDZJ IXDA== X-Gm-Message-State: AG10YOQyWHoNJRK/HmXE+cIQfelr0pFOhTo0LRuPdRvMamPILSRWB0b9Q+IC5Kr4GxX+iA== X-Received: by 10.28.98.138 with SMTP id w132mr24076079wmb.45.1456339864676; Wed, 24 Feb 2016 10:51:04 -0800 (PST) Received: from dhcp-3-217.uk.xensource.com (default-46-102-197-194.interdsl.co.uk. [46.102.197.194]) by smtp.gmail.com with ESMTPSA id pu8sm4295288wjc.17.2016.02.24.10.51.03 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 24 Feb 2016 10:51:04 -0800 (PST) From: Lars Kurth Date: Wed, 24 Feb 2016 18:51:02 +0000 Message-Id: <884EC716-0ED5-4D36-886A-4752AAC6C913@gmail.com> To: xen-devel , xen-announce Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\)) X-Mailer: Apple Mail (2.2104) X-Mailman-Approved-At: Wed, 24 Feb 2016 18:53:28 +0000 Cc: Keir Fraser , Ian Campbell , xen-api , Tim Deegan , minios-devel , embedded-pv-devel , mirageos-devel , win-pv-devel Subject: [Xen-announce] Call for nominations for new Hypervisor subproject maintainers and committers X-BeenThere: xen-announce@lists.xen.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Xen announcements \(low volume\)" List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: xen-announce-bounces@lists.xen.org Errors-To: xen-announce-bounces@lists.xen.org Dear Community members, I wanted to inform you that both Keir Fraser and Tim Deegan, have formally stepped down in their roles as committers from the Hypervisor team. In addition, you may have seen that Ian Campbell recently transferred maintainer-ship for many components to other community members (see http://bit.ly/1RnM8JP). This means that Ian will take a much less active role within the project in the future. First and foremost, the remaining committers and the Xen Project Advisory Board would like to thank Keir, Tim and Ian for serving the Xen Project community and their manyfold and diverse contributions. Given, that as a project, we have found it difficult to promote contributors to maintainer and committer roles in the past, the remaining group of committers felt that we should use a more formal appointment process to successions and succession planning and have asked me to organise this process. Taking a longer term view, the committers also felt that we should not restrict the appointment process to replacing committer positions only, but to consider additional committer positions based on merit and to also include new maintainer nominations. Thus, to fill these positions, we are soliciting nominations. To nominate yourself or someone else within the community, please send e-mail to appointments@xenproject.org with one of the following subject lines: - "Maintainer Nomination of [name]" - "Committer Nomination of [name]" Nominees will of course be asked, privately, whether they would be willing to serve, if they have been nominated by someone else. Please provide contact details (at least the full name and e-mail address of nominee) in the body of the e-mail and describe why the nominee would be a good fit a maintainer and/or committer. The body of the nomination should list technical knowledge that is needed to be a maintainer and/or committer and highlight core areas of expertise. In addition, we are also interested in specific instances, where the nominee showed communication and open source leadership qualities. For example: * Was able to help resolve disagreements, both technical and non- technical, which you were a party to or observer of. * Was able to contribute to improve quality and architectural consistency across several components within the Hypervisor * Has been involved in coordinating the activities of several community members * Has led or driven technical initiatives or larger scale feature development within the community * Has mentored and encouraged newcomers to the community * Has represented the project or aspects of it (e.g. via talks, blog posts, ...) * Has shown other communication and open source leadership qualities Being a maintainer and/or committer does require a time commitment. Nominees should be able to follow e-mail discussions on xen-devel@ on an ongoing basis and respond within a couple of days so that discussions progress. Committers should ideally be able to spend a minimum of 4-5 days working on the project per month. For maintainers, the time requirement is likely less. We anticipate starting our selection process according to the following rough time-table. Today: Public call for nominations for new committers and maintainers (self-nominations and 3rd-party nominations both welcome) March 11: Closing date for nominations up to March 30: We email non-self-nominated nominees in private to ask them to confirm whether they are willing to act as nominees. We will also discuss with all nominees, time commitment and other possible questions (from both nominees and existing committers), related to the proposed nominations. March 30: We conduct a formal vote to ratify nominations April 6: We publish the new maintainers and committers (we may do this earlier) Note that we have identified some issues in our governance, such as whether we need to elect a new project lead or whether we introduce a committee to steer the project instead, alongside other issues. We aim to resolve these issues *after* new maintainers and committers have been elected. If you do have any questions related to the process, feel free to reply to this thread. In addition, if you want to nominate someone else or yourself but are not sure, feel free to send your question to appointments@xenproject.org preceded by "Question:" in the subject line. Best Regards Lars Kurth Xen Project Community Manager Chairman of Xen Project Advisory Board _______________________________________________ Xen-announce mailing list Xen-announce@lists.xen.org http://lists.xen.org/xen-announce